| Summary: | accountsservice new security issue CVE-2018-14036 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | Shlomi Fish <shlomif> |
| Status: | RESOLVED OLD | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | marja11, mhrambo3501, pkg-bugs |
| Version: | 6 | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Source RPM: | accountsservice-0.6.45-2.mga7.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2018-07-03 14:04:53 CEST
David Walser
2018-07-03 14:05:03 CEST
Whiteboard:
(none) =>
MGA6TOO Assigning to the registered maintainer. Assignee:
bugsquad =>
shlomif Fixed in mga7. Can anyone test there before i update mga6 too? Version:
Cauldron =>
6 (In reply to Shlomi Fish from comment #2) > Fixed in mga7. Can anyone test there before i update mga6 too? CC'ing all packagers collectively, maybe one of them can test. I can't test because I'm in too much in a hurry (need to travel to the LSM / RMML tonight). Is testing that it installs enough, or is there a PoC to test? CC:
(none) =>
pkg-bugs A better fix than the suggested patch went upstream: http://openwall.com/lists/oss-security/2018/07/20/4 Whiteboard:
(none) =>
MGA6TOO SUSE has issued an advisory for this on November 5: http://lists.suse.com/pipermail/sle-security-updates/2018-November/004832.html Summary:
accountsservice new security issue =>
accountsservice new security issue CVE-2018-14036 openSUSE has issued an advisory for this on November 10: https://lists.opensuse.org/opensuse-updates/2018-11/msg00049.html Upstream fix included in 0.6.50. I updated Cauldron to 0.6.54. Version:
Cauldron =>
6 Mageia 6 is EOL. Resolution:
(none) =>
OLD |