Debian has issued an advisory on April 29: https://www.debian.org/security/2021/dsa-4908 The issue is fixed upstream in 5.4.24: https://bugzilla.redhat.com/show_bug.cgi?id=1881353 Fortunate we have dropped these packages.
Status comment: (none) => Fixed upstream in 5.4.24
https://blog.mageia.org/en/2021/06/08/mageia-7-will-reach-end-of-support-on-30th-of-june-the-king-is-dead-long-live-the-king/
Resolution: (none) => OLDStatus: NEW => RESOLVED