Bug 26401 - mcpp new security issue CVE-2019-14274
Summary: mcpp new security issue CVE-2019-14274
Status: RESOLVED INVALID
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: All Packagers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-03-31 22:59 CEST by David Walser
Modified: 2020-04-01 22:30 CEST (History)
1 user (show)

See Also:
Source RPM: mcpp-2.7.2-14.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-03-31 22:59:20 CEST 
openSUSE has issued an advisory on March 25:
https://lists.opensuse.org/opensuse-updates/2020-03/msg00111.html

Mageia 7 is also affected.
Comment 1 David GEIGER 2020-04-01 06:33:55 CEST 
CVE-2019-14274 is already fixed with the libmcpp-2.7.2-zeroc.patch from Gentoo

CC: (none) => geiger.david68210

Comment 2 Lewis Smith 2020-04-01 20:31:51 CEST 
This package has no registered nor evident maintainer, so assigning globally.

Assignee: bugsquad => pkg-bugs

Comment 3 David Walser 2020-04-01 22:30:35 CEST 
Yes indeed!

Status: NEW => RESOLVED
Resolution: (none) => INVALID
Note You need to log in before you can comment on or make changes to this bug.