Debian-LTS has issued an advisory on February 10: https://www.debian.org/lts/security/2020/dla-2099 The issue is fixed upstream in 8.29. Mageia 7 is also affected.
Whiteboard: (none) => MGA7TOO
No obvious maintainer, so assigning globally; CC DavidG as relatively recent committer.
CC: (none) => geiger.david68210Assignee: bugsquad => pkg-bugs
Status comment: (none) => Fixed upstream in 8.29
https://security-tracker.debian.org/tracker/CVE-2019-9658 is already on mga7 and 8
Resolution: (none) => FIXEDCC: (none) => mageiaStatus: NEW => RESOLVED