Bug 31771

Summary: zchunk new security issues fixed upstream in 1.3.1
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: zchunk-1.2.4-1.mga9.src.rpm CVE:
Status comment: fixed upstream in 1.3.1

Description David Walser 2023-04-06 19:30:11 CEST 
Fedora has issued an advisory today (April 6):
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/I542F7XFKEQAXTU6EJ5HALNME3SSCJ4T/

It has no details about the security issues fixed.
Comment 1 Lewis Smith 2023-04-08 20:19:35 CEST 
No one packager in view for zchunk, so assigning this globally.

Status comment: (none) => fixed upstream in 1.3.1
Assignee: bugsquad => pkg-bugs

Comment 2 Thomas Backlund 2023-06-27 20:48:39 CEST 
Looked through the upstream commits between 1.2.4 and 1.3.1, basically only security fixes, tested build and basic usage, and pushed to cauldron

Resolution: (none) => FIXED
Status: NEW => RESOLVED