openSUSE has issued an advisory on October 25: https://lists.opensuse.org/opensuse-updates/2017-10/msg00089.html We fixed this for Mageia 6 in Bug 21716, but probably didn't backport it for 5.
Hi, After checking, it appears that the patch for CVE-2017-14608 is contained into the patch for CVE-2017-14348 in our Mageia 5 package so the problem is already solved. Best regards, Nico.
Resolution: (none) => FIXEDStatus: NEW => RESOLVED
Thanks Nicolas! *** This bug has been marked as a duplicate of bug 21716 ***
Resolution: FIXED => DUPLICATE