Bug 25048

Summary: virt-manager new security issue CVE-2019-10183
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: bgmilne, thierry.vignaud
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: virt-manager-2.2.0-1.mga8.src.rpm CVE:
Status comment: Patch is available

Description David Walser 2019-07-04 20:58:13 CEST 
A security issue in virt-manager has been announced on July 3:
https://www.openwall.com/lists/oss-security/2019/07/03/1

The message above contains a link to a patch to fix it.

The issue was introduced in 2.2.0; older versions are not affected.
David Walser 2020-01-14 18:19:36 CET

Status comment: (none) => Patch is available

Comment 1 Buchan Milne 2020-11-15 11:24:03 CET 
Cauldron was update to 2.2.1 at Thu Jul 4 11:38:12 2019 UTC:

http://svnweb.mageia.org/packages?view=revision&revision=1418407

I think this can be resolved?

Ever confirmed: 1 => 0
Status: NEW => UNCONFIRMED
CC: (none) => bgmilne
Assignee: thierry.vignaud => bugsquad

Comment 2 David Walser 2020-11-15 13:19:55 CET 
Cauldron has 3.1.0 now.

Resolution: (none) => FIXED
Status: UNCONFIRMED => RESOLVED

Comment 3 Thierry Vignaud 2020-11-16 18:00:22 CET 
3.2.0 actually :-)

CC: (none) => thierry.vignaud