Bug 9672

Summary: ngircd new security issue CVE-2013-1747
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Oden Eriksson <oe>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: major    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/546498/
Whiteboard:
Source RPM: ngircd-20-4.mga3.src.rpm CVE:
Status comment:

Description David Walser 2013-04-08 23:13:48 CEST 
Fedora has issued an advisory on March 30:
http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html

Reproducible: 

Steps to Reproduce:
Comment 1 Oden Eriksson 2013-04-09 07:46:18 CEST 
What to do now when cauldron is frozen. Wait for mga3 stable?
Comment 2 David Walser 2013-04-09 12:56:35 CEST 
(In reply to Oden Eriksson from comment #1)
> What to do now when cauldron is frozen. Wait for mga3 stable?

Go ahead and fix it, and we'll just need to send a freeze push request to the mailing list to get it built (I can send the request once it's ready).
Comment 3 Oden Eriksson 2013-04-09 13:34:56 CEST 
OK. Due time.
Comment 4 Oden Eriksson 2013-04-13 17:02:17 CEST 
Fixed. Someone has to submit this to cauldron.
Comment 5 David Walser 2013-04-13 23:19:22 CEST 
Thanks Oden!

Fixed in ngircd-20.2-1.mga3.

Status: NEW => RESOLVED
Resolution: (none) => FIXED