Bug 28785 - Update candidate for Minetest 5.4.1 (fixes CVE-2022-2430[01])
Summary: Update candidate for Minetest 5.4.1 (fixes CVE-2022-2430[01])
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: RPM Packages (show other bugs)
Version: 8
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact:
URL:
Whiteboard: MGA8-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks: 29031
  Show dependency treegraph
 
Reported: 2021-04-16 09:28 CEST by Omer I.S.
Modified: 2022-02-14 22:48 CET (History)
3 users (show)

See Also:
Source RPM: minetest-5.3.0-2.mga8.src.rpm
CVE:
Status comment:


Attachments

Description Omer I.S. 2021-04-16 09:28:50 CEST
Please add the latest version of Minetest, 5.4.1.
Comment 1 Lewis Smith 2021-04-16 21:11:45 CEST
Thank you for the prompt.

 http://minetest.net
 https://github.com/minetest/minetest/tree/stable-5

Our current version is not very old:
Minetest 5.3.0 Thu Jul 09, 2020
releases since:
Minetest 5.4.0	Tue Feb 23, 2021
Minetest 5.4.1	Sat Apr 10, 2021

Assigning to Rémi for this SRPM.

Source RPM: (none) => minetest-5.3.0-2.mga8.src.rpm
Assignee: bugsquad => rverschelde
Summary: Minetest 5.4.1 => Please update Minetest to 5.4.1
Component: New RPM package request => RPM Packages
Severity: enhancement => normal

Rémi Verschelde 2021-04-17 09:53:47 CEST

Status: NEW => ASSIGNED

Comment 2 Rémi Verschelde 2021-04-18 17:10:04 CEST
Packaged in Cauldron.

Update candidate for Mageia 8:

Advisory
========

Updated minetest package provides latest upstream release

  This updates provides Minetest 5.4.1 (from 5.3.0), adding new features, fixing
  bugs and ensuring compatibility with updated online servers.

  See the referenced release notes for details.

References:

 - https://forum.minetest.net/viewtopic.php?f=18&t=26322
 - https://forum.minetest.net/viewtopic.php?f=18&t=26548

SRPMs in core/updates_testing:
==============================

minetest-5.4.1-1.mga8

RPMs in core/updates_testing:
=============================

minetest-5.4.1-1.mga8

Assignee: rverschelde => qa-bugs

Rémi Verschelde 2021-04-18 17:10:22 CEST

Summary: Please update Minetest to 5.4.1 => Update candidate for Minetest to 5.4.1

Rémi Verschelde 2021-04-18 17:10:31 CEST

Summary: Update candidate for Minetest to 5.4.1 => Update candidate for Minetest 5.4.1 (feature update)

Aurelien Oudelet 2021-04-18 19:33:18 CEST

Version: Cauldron => 8
CC: (none) => ouaurelien

Comment 3 Thomas Andrews 2021-04-21 01:11:40 CEST
Tested in a VirtualBox 64-bit MGA8 Plasma guest.

Installed MineTest, then ran it and created a world. Updated to version 5.4.1 with no issues. Ran it again, created another world, added enhancements, played a game for a few seconds, got nowhere, and quit. 

Seems to be working as designed. OKing, and validating. Advisory in Coment 2.

Whiteboard: (none) => MGA8-64-OK
Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Aurelien Oudelet 2021-04-23 20:09:03 CEST

Keywords: (none) => advisory

Comment 4 Mageia Robot 2021-04-24 00:54:47 CEST
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGAA-2021-0095.html

Resolution: (none) => FIXED
Status: ASSIGNED => RESOLVED

David Walser 2021-05-29 23:30:19 CEST

Blocks: (none) => 29031

Comment 6 David Walser 2022-02-14 22:48:36 CET
(In reply to David Walser from comment #5)
> This update had several security fixes:
> https://dev.minetest.net/Changelog#5.3.0_.E2.86.92_5.4.0
> https://lists.fedoraproject.org/archives/list/package-announce@lists.
> fedoraproject.org/thread/ZSUO7C4BGOGBGTFBKCR3U5AVNXJ77Q3D/

Now with CVEs:
https://www.debian.org/security/2022/dsa-5075

Summary: Update candidate for Minetest 5.4.1 (feature update) => Update candidate for Minetest 5.4.1 (fixes CVE-2022-2430[01])


Note You need to log in before you can comment on or make changes to this bug.