Fedora has issued an advisory on September 25: https://lists.fedoraproject.org/pipermail/package-announce/2014-October/139821.html The issue is fixed upstream in 2.0.4. The initial report says that versions older than 2.0.3 *may* be affected, but I haven't seen a clarification as to whether they are: http://seclists.org/fulldisclosure/2014/Sep/79 Reproducible: Steps to Reproduce:
CC: (none) => guillomovitch, pterjanWhiteboard: (none) => MGA4TOO, MGA3TOO
Guillaume fixed this in Cauldron with suricata-2.0.4-1.mga5. Thanks Guillaume! We might need more investigation to see if 1.4.x in Mageia 3 and 4 are affected, or we could just update it if it's OK to do so.
Version: Cauldron => 4Whiteboard: MGA4TOO, MGA3TOO => MGA3TOO
Reading the code in 1.4 and 1.4.7 they don't seem affected as they don't use "\r" to find the end of the string, they just discard it if the version ends up finishing with it. I'll try to get some upstream confirmation.
Got confirmation that 1.4 is fine https://twitter.com/Regiteric/status/519226322166763520
Thanks Pascal!
Status: NEW => RESOLVEDVersion: 4 => CauldronResolution: (none) => FIXEDWhiteboard: MGA3TOO => (none)