+++ This bug was initially created as a clone of Bug #28439 +++ Apache has issued an advisory on February 24: https://www.openwall.com/lists/oss-security/2021/02/24/2 The issue is fixed upstream in 1.14: https://xmlgraphics.apache.org/security.html Mageia 7 and Mageia 8 are also affected.
Assigning to Java stack maintainers.
CVE: (none) => CVE-2020-11987CC: (none) => ouaurelienAssignee: bugsquad => java
CC: java => (none)
Summary: batik new security issue CVE-2020-11987 (for mageia 7 ) => batik new security issue CVE-2020-11987Blocks: 28479 => 26800
Source RPM: batik-1.13-1.mga8.src.rpm => batik-1.10-1.mga7.src.rpmStatus comment: (none) => Fixed upstream in 1.14
CC: mageia, security => (none)
closing as dupplicate as we will adresse the 2 CVE in the same bugreport. *** This bug has been marked as a duplicate of bug 26800 ***
Resolution: (none) => DUPLICATEStatus: NEW => RESOLVED
Wrong bug. *** This bug has been marked as a duplicate of bug 28439 ***