A security issue fixed upstream in polkit has been announced on July 11: http://www.openwall.com/lists/oss-security/2018/07/11/2 The issue is fixed upstream in 0.115 and the message above contains a link to the commit that fixed it. Mageia 5 and Mageia 6 are also affected.
Whiteboard: (none) => MGA6TOO
polkit-0.115-1.mga7 uploaded to cauldron
Whiteboard: MGA6TOO => (none)Version: Cauldron => 6CC: (none) => tmb
Assigning to the registered maintainer. CC'ing the basesystem maintainer, in case this package counts as basesystem package. Does it??
CC: (none) => basesystem, marja11Assignee: bugsquad => mageia
I would say it's a basesystem package.
Ubuntu has issued an advisory for this today (July 16): https://usn.ubuntu.com/3717-1/
Fedora has issued an advisory for this on July 13: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/AJXDSYWQWS3BQAIM7HTYQC4AWFGKRDD7/
openSUSE has issued an advisory for this today (July 20): https://lists.opensuse.org/opensuse-updates/2018-07/msg00055.html
Depends on: (none) => 23940
Mageia 6 is EOL.
CC: (none) => mramboStatus: NEW => RESOLVEDResolution: (none) => OLD