| Summary: | e2fsprogs new security issue CVE-2019-5188 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | andrewsfarm, herman.viaene, sysadmin-bugs, tmb |
| Version: | 7 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA7-64-OK | ||
| Source RPM: | e2fsprogs-1.45.4-1.mga7.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2020-01-08 01:21:24 CET
Assigning to tv as the active maintainer of this pkg. Assignee:
bugsquad =>
thierry.vignaud SUSE has issued an advisory for this today (January 13): http://lists.suse.com/pipermail/sle-security-updates/2020-January/006332.html Advisory: ========= e2fsprogs was updated to 1.45.5 in order to fix several bugs, including a potential security issues (CVE-2019-5188). See http://e2fsprogs.sourceforge.net/e2fsprogs-release.html#1.45.5 for details Assignee:
thierry.vignaud =>
qa-bugs e2fsprogs-1.45.5-1.mga7 libext2fs2-1.45.5-1.mga7 libext2fs-devel-1.45.5-1.mga7 from e2fsprogs-1.45.5-1.mga7.src.rpm Source RPM:
e2fsprogs-1.45.5-1.mga7 =>
e2fsprogs-1.45.4-1.mga7.src.rpm MGA7-64 Plasma on Lenovo B50 No installation issues. Ref to bugs 15208 and 15352 for tests. Ran all commands as root to avoid having to jump around in the file system (not shown in the procedure). All output seems sensible. CC:
(none) =>
herman.viaene Validating. Advisory in Comment 3. Keywords:
(none) =>
validated_update
Thomas Backlund
2020-01-17 10:45:29 CET
Keywords:
(none) =>
advisory An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2020-0039.html Status:
ASSIGNED =>
RESOLVED |