Bug 31199

Summary: libtiff new security issue CVE-2022-3597
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Nicolas Salguero <nicolas.salguero>
Status: RESOLVED DUPLICATE QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: libtiff-4.4.0-6.mga9.src.rpm CVE:
Status comment:

Description David Walser 2022-11-28 20:15:29 CET 
SUSE has issued an advisory today (November 28):
https://lists.suse.com/pipermail/sle-security-updates/2022-November/013120.html

Mageia 8 is also affected.

Note that there's a validated update for another CVE pending in Bug 31188.
Comment 1 Nicolas Salguero 2022-11-29 08:31:27 CET 
Hi,

In fact, the patch for CVE-2022-362[67] also fixed that CVE so that CVE was fixed in bug 31091.

Best regards,

Nico.
Comment 2 David Walser 2022-11-29 13:43:55 CET 
Thanks.

*** This bug has been marked as a duplicate of bug 31091 ***

Resolution: (none) => DUPLICATE
Status: NEW => RESOLVED