Bug 27870 - fprintd possible new security issues fixed upstream in 1.90.6
Summary: fprintd possible new security issues fixed upstream in 1.90.6
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: All Packagers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-12-18 20:35 CET by David Walser
Modified: 2020-12-24 12:20 CET (History)
5 users (show)

See Also:
Source RPM: fprintd-0.9.0-3.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-12-18 20:35:19 CET 
fprintd 1.90.6 has been released on December 7, and it says it fixes bugs with possible security implications:
https://gitlab.freedesktop.org/libfprint/fprintd/-/tags

It didn't specify what bugs, or what versions are affected.

Fedora has issued an advisory for this on December 17:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/FYDMIN3GZG4TDYJ2IPIUHJANINVT6PAW/

Corresponding updates for libfprint:
https://gitlab.freedesktop.org/libfprint/libfprint/-/tags
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/UK6GUKF74RNZPF3IG5J3KY353OVGOWV6/
Comment 1 Aurelien Oudelet 2020-12-18 21:38:57 CET 
Hi, thanks reporting this.

One orphaned package. Assigning globally and adding commuters.

Assignee: bugsquad => pkg-bugs
CC: (none) => geiger.david68210, jani.valimaa, ouaurelien, pterjan

Comment 2 Nicolas Lécureuil 2020-12-24 12:20:33 CET 
new version available in cauldron

Resolution: (none) => FIXED
Status: NEW => RESOLVED
CC: (none) => mageia
Note You need to log in before you can comment on or make changes to this bug.