Bug 24078

Summary: ncurses new security issue CVE-2018-19211
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED OLD QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: eatdirt, geiger.david68210, joequant, marja11, mhrambo3501, smelror
Version: 6   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: ncurses-6.1-20181117.3.mga7.src.rpm CVE:
Status comment:

Description David Walser 2018-12-26 03:45:46 CET 
openSUSE has issued advisories on December 8:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00019.html
https://lists.opensuse.org/opensuse-updates/2018-12/msg00040.html

Mageia 6 is also affected.
David Walser 2018-12-26 03:45:53 CET

Whiteboard: (none) => MGA6TOO

Comment 1 Marja Van Waes 2018-12-26 08:15:47 CET 
Assigning to all packagers collectively, since there is no registered maintainer for this package.

Also CC'ing some committers.

CC: (none) => eatdirt, geiger.david68210, joequant, marja11, smelror
Assignee: bugsquad => pkg-bugs

Comment 2 David GEIGER 2018-12-26 10:38:19 CET 
current ncurses-6.1-20181117 in Cauldron contains already the security fix!
David Walser 2018-12-26 14:50:23 CET

Version: Cauldron => 6
Whiteboard: MGA6TOO => (none)

David Walser 2019-05-13 04:14:40 CEST

QA Contact: (none) => security
Component: RPM Packages => Security

Comment 3 Mike Rambo 2019-11-06 13:48:14 CET 
Mageia 6 is EOL.

Status: NEW => RESOLVED
Resolution: (none) => OLD
CC: (none) => mrambo