Ubuntu has issued an advisory on August 14: http://www.ubuntu.com/usn/usn-1927-1/ Patches checked into SVN for Mageia 3 and Cauldron. Mageia 2 is not affected. In Cauldron, it currently will not build: http://pkgsubmit.mageia.org/uploads/failure/cauldron/core/release/20130815153246.luigiwalser.valstar.22801/log/libimobiledevice-1.1.5-2.mga4/build.0.20130815153302.log Reproducible: Steps to Reproduce:
CC: (none) => fundawangVersion: 3 => CauldronWhiteboard: (none) => MGA3TOO
Fixed in Cauldron in libimobiledevice-1.1.5-2.mga4 by Funda. Thanks Funda! Patched package uploaded for Mageia 3. Advisory: ======================== Updated libimobiledevice packages fix security vulnerability: Paul Collins discovered that libimobiledevice incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files and access device keys. In the default Ubuntu installation, this issue should be mitigated by the Yama link restrictions (CVE-2013-2142). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2142 http://www.ubuntu.com/usn/usn-1927-1/ ======================== Updated packages in core/updates_testing: ======================== libimobiledevice-1.1.4-4.1.mga3 libimobiledevice3-1.1.4-4.1.mga3 libimobiledevice-devel-1.1.4-4.1.mga3 python-imobiledevice-1.1.4-4.1.mga3 from libimobiledevice-1.1.4-4.1.mga3.src.rpm
Version: Cauldron => 3Assignee: bugsquad => qa-bugsWhiteboard: MGA3TOO => (none)
You need an iphone or ipod touch to test this properly I think. Anybody have one?
Testing complete mga3_64, with my iPhone 4 Ok for me nothing to report. Simple test by connecting my iBidule.
CC: (none) => geiger.david68210Whiteboard: (none) => mga3-64-ok mga3-32-ok
Testing complete mga3_32, with my iPhone 4 Ok for me nothing to report too. Simple test by connecting my iBidule.
Thanks David. Advisory from comment 1 uploaded. Validating Could sysadmin please push from 3 core updates testing to updates Thanks!
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
Update pushed: http://advisories.mageia.org/MGASA-2013-0251.html
Status: NEW => RESOLVEDCC: (none) => tmbResolution: (none) => FIXED