Bug 26982

Summary: glibc new security issue CVE-2020-6096
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: major    
Priority: Normal CC: mageia
Version: Cauldron   
Target Milestone: ---   
Hardware: arm   
OS: Linux   
Whiteboard:
Source RPM: glibc-2.31-12.mga8.src.rpm CVE:
Status comment:
Bug Depends on: 28161    
Bug Blocks:    

Description David Walser 2020-07-21 18:46:07 CEST 
Fedora has issued an advisory on July 19:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/URXOIA2LDUKHQXK4BE55BQBRI6ZZG3Y6/

Updating to the latest fixes from 2.31 branch should fix it.

It looks like it only affects ARM.
Comment 1 Lewis Smith 2020-07-21 20:44:59 CEST 
Having to

Assignee: bugsquad => pkg-bugs

Comment 2 Lewis Smith 2020-07-21 20:46:56 CEST 
Having to assign this globally in the absence of the usual maintainer.
Comment 3 Nicolas Lécureuil 2020-12-27 16:24:28 CET 
looked and the commits are in cauldron
cf: https://security-tracker.debian.org/tracker/CVE-2020-6096

Resolution: (none) => FIXED
CC: (none) => mageia
Status: NEW => RESOLVED

Comment 4 Thomas Backlund 2021-01-19 17:44:08 CET 
This was not fixed in mga7, will add fixes as part of bug 28161
David Walser 2021-01-20 00:29:35 CET

Depends on: (none) => 28161