21948 – systemd new security issue CVE-2017-15908

Bug 21948 - systemd new security issue CVE-2017-15908

Summary: systemd new security issue CVE-2017-15908

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	Cauldron
Hardware:	All Linux

Priority:	Normal Severity: major
Target Milestone:	---
Assignee:	Base system maintainers
QA Contact:	Sec team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-10-27 14:54 CEST by David Walser
Modified:	2018-01-14 18:59 CET (History)
CC List:	2 users (show)

See Also:
Source RPM:	systemd-230-12.mga6.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2017-10-27 14:54:08 CEST

Ubuntu has issued an advisory on October 26:
https://usn.ubuntu.com/usn/usn-3466-1/

Mageia 6 is also affected.  I don't believe the affected code is present in Mageia 5.

David Walser 2017-10-27 14:54:40 CEST

Whiteboard: (none) => MGA6TOO

Comment 1 Marja Van Waes 2017-10-27 19:27:07 CEST

Assigning to the base system maintainers, CC'ing our registered systemd maintainer.

CC: (none) => mageia, marja11
Assignee: bugsquad => basesystem

Comment 2 David Walser 2017-11-03 18:08:55 CET

Fedora has issued an advisory for this on October 31:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/24WHGHQKYWNRTG24LVUGEH5BGOLBCJVZ/

Comment 3 David Walser 2018-01-01 19:59:04 CET

Mageia 6 moved to Bug 22294.

Whiteboard: MGA6TOO => (none)

Comment 4 David Walser 2018-01-14 18:59:24 CET

Patch committed upstream some time before 236, which is now in Cauldron.

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Note You need to log in before you can comment on or make changes to this bug.