RedHat has issued an advisory on November 18: https://rhn.redhat.com/errata/RHSA-2013-1526.html It is not clear if the versions in Mageia 2 or Cauldron are also affected. Reproducible: Steps to Reproduce:
CC: (none) => alien
CVE-2013-2029 affects a migration script (nagios.upgrade_to_v3.sh) we don't ship. CVE-2013-4214 is related to a vulnerability that can only occurs if source code is modified, this is not worth the effort to correct it.
Status: NEW => RESOLVEDResolution: (none) => WONTFIX