openSUSE has issued an advisory on August 31:
The issue was fixed upstream, probably in 3.2.3.
RPM Packages =>
openSUSE has issued an advisory on September 9:
It fixes another issue, also probably fixed upstream in 3.2.3.
libmirage new security issue CVE-2019-15540 =>
libmirage new security issues CVE-2019-15540 and CVE-2019-15757
Updated libmirage packages fix security vulnerabilities:
The CSO filter in libMirage in CDemu did not validate the part size, triggering
a heap-based buffer overflow that could lead to root access by a local user
NULL pointer dereference in the NRG parser (CVE-2019-15757).
Updated packages in core/updates_testing:
MGA7-64 Plasma on Lenovo B50
No installation issues.
Running the daemon
Starting CDEmu daemon with following parameters:
- num devices: 1
- control device: /dev/vhba_ctl
- audio driver: null
- bus type: session
posix_spawn avoided (fd close requested) posix_spawn avoided (fd close requested) cdemu0: Mapping: device mapping (SCSI generic) for device #0 could not be determined; device mapping info for this device will not be available
Inserting or ejecting a CD does not provoke any feedback.
Googling leads me to installing cdemu-client and from https://wiki.archlinux.org/index.php/CDemu
picking a few commands
$ cdemu status
DEV LOADED FILENAME
Strange to me as there is a CD loaded.
$ cdemu device-mapping
DEV SCSI CD-ROM SCSI generic
That seems OK.
Not sure whet to do with it.