Bug 29281 - perl-Net-IPv4Addr new security issue, unmaintained upstream, should be dropped
Summary: perl-Net-IPv4Addr new security issue, unmaintained upstream, should be dropped
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: All Packagers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks: 30163
  Show dependency treegraph
 
Reported: 2021-07-23 18:28 CEST by David Walser
Modified: 2023-06-19 23:38 CEST (History)
2 users (show)

See Also:
Source RPM: perl-Net-IPv4Addr-0.100.0-10.mga8.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2021-07-23 18:28:41 CEST 
https://blog.urth.org/2021/03/29/security-issues-in-perl-ip-address-distros/

This is related to Bug 29023 and Bug 29025 also discussed in the above.
Comment 1 Lewis Smith 2021-07-23 21:18:07 CEST 
No particular committer evident for this SRPM, so assigning this globally.

Assignee: bugsquad => pkg-bugs

David Walser 2022-10-25 14:53:07 CEST

Blocks: (none) => 30163

Comment 2 David GEIGER 2023-06-19 05:58:16 CEST 
$ urpmq --whatrequires perl-Net-IPv4Addr
perl-MondoRescue
perl-Net-Packet

$ urpmq --whatrequires perl-MondoRescue
mindi

$ urpmq --whatrequires perl-Net-Packet
perl-Net-Packet-Target

$ urpmq --whatrequires perl-Net-Packet-Target

$ urpmq --whatrequires mindi
mondo

$ urpmq --whatrequires mondo

So to remove perl-Net-IPv4Addr we should also drop perl-MondoRescue, perl-Net-Packet, perl-Net-Packet-Target, mindi and mondo.

CC: (none) => geiger.david68210

Comment 3 Nicolas Lécureuil 2023-06-19 23:38:45 CEST 
All added in tasks obsoletes

CC: (none) => mageia
Status: NEW => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.