RedHat has issued an advisory on November 3: https://access.redhat.com/errata/RHSA-2020:4766 Mageia 7 is also affected.
Whiteboard: (none) => MGA7TOO
Hi, thanks for reporting this bug. Assigned to all packagers, added recent commiters. (Please set the status to 'assigned' if you are working on it)
Keywords: (none) => TriagedCC: (none) => mageia, nicolas.salgueroAssignee: bugsquad => pkg-bugs
Hi, According to RedHat and Debian the fix for CVE-2019-9278 and CVE-2020-0198 also fixed CVE-2020-0181. Looking at the source code of version 0.6.22, I found that the fix for CVE-2020-0182 is already present in the code. Best regards, Nico.
Agreed based on this: https://git.centos.org/rpms/libexif/c/00b59c454861ef19aa3dfd26c6a7d0429fae37f9?branch=c8 *** This bug has been marked as a duplicate of bug 26814 ***
Resolution: (none) => DUPLICATEStatus: NEW => RESOLVED