22198 – erlang-jiffy 0.14.13 fixes CVE-2017-12635 in couchdb

Bug 22198 - erlang-jiffy 0.14.13 fixes CVE-2017-12635 in couchdb

Summary: erlang-jiffy 0.14.13 fixes CVE-2017-12635 in couchdb

Status:	RESOLVED OLD

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	6
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Nicolas Lécureuil
QA Contact:	Sec team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-12-15 21:04 CET by David Walser
Modified:	2019-11-06 13:17 CET (History)
CC List:	1 user (show)

See Also:
Source RPM:	erlang-jiffy-0.14.8-2.mga6.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2017-12-15 21:04:12 CET

Fedora has issued an advisory on December 9:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/NBU3DZ6WIJXHKGBWTBRNX43O3QCURUZ2/

We don't have couchdb packaged anymore (this package was imported for ejabberd), but if anyone is using it locally they may be affected by this issue (I don't know what impact it has on ejabberd), so we should probably update it.

David Walser 2019-05-13 04:15:43 CEST

Component: RPM Packages => Security
QA Contact: (none) => security

Comment 1 Mike Rambo 2019-11-06 13:17:35 CET

Mageia 6 is EOL.

Resolution: (none) => OLD
CC: (none) => mrambo
Status: NEW => RESOLVED

Note You need to log in before you can comment on or make changes to this bug.