Bug 33300

Summary: cyrus-imapd new security issue CVE-2024-34055
Product: Mageia Reporter: Nicolas Salguero <nicolas.salguero>
Component: SecurityAssignee: All Packagers <pkg-bugs>
Status: NEW --- QA Contact: Sec team <security>
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA9TOO
Source RPM: cyrus-imapd-2.5.15-11.mga10.src.rpm CVE: CVE-2024-34055
Status comment: Fixed upstream in 3.6.5

Description Nicolas Salguero 2024-06-13 09:42:34 CEST 
Debian has issued an advisory on June 11:
https://lwn.net/Articles/978111/

Mageia 9 is also affected.
Nicolas Salguero 2024-06-13 09:43:52 CEST

Whiteboard: (none) => MGA9TOO
Source RPM: (none) => cyrus-imapd-2.5.15-11.mga10.src.rpm
Status comment: (none) => Fixed upstream in 3.6.5
CVE: (none) => CVE-2024-34055

Comment 1 Lewis Smith 2024-06-13 20:50:53 CEST 
No one packager evident, so assigning this globally.

Assignee: bugsquad => pkg-bugs