Bug 13525 - apt new security issue CVE-2014-0478
Summary: apt new security issue CVE-2014-0478
Status: RESOLVED INVALID
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal normal
Target Milestone: ---
Assignee: Christiaan Welvaart
QA Contact: Sec team
URL: http://lwn.net/Vulnerabilities/602328/
Whiteboard: MGA4TOO, MGA3TOO
Keywords:
Depends on:
Blocks:
 
Reported: 2014-06-13 17:26 CEST by David Walser
Modified: 2014-06-15 13:57 CEST (History)
0 users

See Also:
Source RPM: apt-0.5.15lorg3.94-11.mga4.src.rpm
CVE:
Status comment:


Attachments

Description David Walser 2014-06-13 17:26:40 CEST
Debian has issued an advisory on June 12:
https://www.debian.org/security/2014/dsa-2958

It's not totally clear if our old version is affected, but if it is, we have the same version in Mageia 3 and Mageia 4.

Reproducible: 

Steps to Reproduce:
David Walser 2014-06-13 17:26:49 CEST

Whiteboard: (none) => MGA4TOO, MGA3TOO

Comment 1 Christiaan Welvaart 2014-06-15 13:57:07 CEST
Thanks. The reported issue is in "apt-get source" which may not even work with mageia, we certainly don't support it.

Status: NEW => RESOLVED
Resolution: (none) => INVALID


Note You need to log in before you can comment on or make changes to this bug.