| Summary: | opusfile new security issue CVE-2022-47021 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | major | ||
| Priority: | Normal | CC: | andrewsfarm, davidwhodgins, geiger.david68210, sysadmin-bugs |
| Version: | 8 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA8-64-OK | ||
| Source RPM: | opusfile-0.12-3.mga9.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2023-02-03 01:56:32 CET
David Walser
2023-02-03 01:56:49 CET
Status comment:
(none) =>
Patches available from upstream and Fedora Done for both mga8 and Cauldron! CC:
(none) =>
geiger.david68210 lib64opusfile0-0.12-1.1.mga8 lib64opusfile-devel-0.12-1.1.mga8 from opusfile-0.12-1.1.mga8.src.rpm Assignee:
bugsquad =>
qa-bugs Tested in a VirtualBox mga8-64 Plasma guest. No installation issues. urpmq --whatrequires lib64opusfile0 produces a relatively short list, with one of the results a game called "Taisei." I used "strace -o opus.txt taipei" and played the game, getting killed rather quickly, then examined the resulting opus.txt file. The search found one call to "/lib64/libopusfile.so.0" Going to call this OK. Validating. Keywords:
(none) =>
validated_update
Dave Hodgins
2023-02-06 21:22:09 CET
CC:
(none) =>
davidwhodgins An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2023-0042.html Status:
NEW =>
RESOLVED |