Bug 28196

Summary: python-autobahn new security issue CVE-2020-35678
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: mageia, shlomif
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: python-autobahn-19.11.1-2.mga8.src.rpm CVE:
Status comment: Fixed upstream in 20.12.3

Description David Walser 2021-01-22 19:05:15 CET 
openSUSE has issued an advisory on January 21:
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HC22UZIJVKS65SOAIGLLU6XWHC73XYOM/

The issue is fixed upstream in 20.12.3.

This package only exists in Cauldron...I'm not sure if it's needed.
David Walser 2021-01-22 19:05:26 CET

Status comment: (none) => Fixed upstream in 20.12.3

Comment 1 Lewis Smith 2021-01-22 21:04:07 CET 
No fixed maintainer, so assigning globally. CC'ing Shlomi who did 19.11.1; and
since, 20.7.1

Source RPM: python3-autobahn-19.11.1-2.mga8.src.rpm => python-autobahn-19.11.1-2.mga8.src.rpm
Assignee: bugsquad => pkg-bugs
CC: (none) => shlomif

Comment 2 Nicolas Lécureuil 2021-01-22 23:03:50 CET 
fixed in cauldron.

CC: (none) => mageia
Status: NEW => RESOLVED
Resolution: (none) => FIXED