Several security issues in procps-ng have been announced: http://openwall.com/lists/oss-security/2018/05/17/1 Details are included in the message above, as is a base64-encoded set of patches. Mageia 5 and Mageia 6 are also affected.
Whiteboard: (none) => MGA6TOO
Assigning to the registered maintainer. CC'ing some committers.
CC: (none) => geiger.david68210, marja11, thierry.vignaudAssignee: bugsquad => tmb
RedHat has issued an advisory today (May 23): https://access.redhat.com/errata/RHSA-2018:1700 It fixes one of these CVEs plus a new one.
Summary: procps-ng new security issues CVE-2018-112[0-4] => procps-ng new security issues CVE-2018-112[0-4,6]
More details: http://openwall.com/lists/oss-security/2018/05/23/2
Summary: procps-ng new security issues CVE-2018-112[0-4,6] => procps-ng new security issues CVE-2018-112[0-6]
Fedora advisory for two of these CVEs from May 22: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/PKA4NZVL4XP3ZQDPHESLQBNXEWUKJLPT/
Debian has issued an advisory for this on May 22: https://www.debian.org/security/2018/dsa-4208
Ubuntu has issued an advisory for this on May 23: https://usn.ubuntu.com/3658-1/
openSUSE has issued an advisory for this today (June 29): https://lists.opensuse.org/opensuse-updates/2018-06/msg00145.html
I believe these issues are fixed in 3.3.15, which is now in Cauldron.
Version: Cauldron => 6Whiteboard: MGA6TOO => (none)
Mageia 6 is EOL.
CC: (none) => mramboStatus: NEW => RESOLVEDResolution: (none) => OLD