Bug 29488 - libjpeg new security issue CVE-2021-37972
Summary: libjpeg new security issue CVE-2021-37972
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal critical
Target Milestone: ---
Assignee: All Packagers
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-09-25 11:31 CEST by David Walser
Modified: 2021-09-27 10:59 CEST (History)
2 users (show)

See Also:
Source RPM: libjpeg-2.1.0-1.mga9.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2021-09-25 11:31:42 CEST 
Google has released Chrome version 94.0.4606.54 on September 21:
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_21.html

It fixes a security issue in libjpeg:
https://bugzilla.redhat.com/show_bug.cgi?id=2006930

The issue is fixed upstream in 2.1.1.
Comment 1 Marja Van Waes 2021-09-25 22:50:22 CEST 
No registered maintainer, so assigning to all packagers

Assignee: bugsquad => pkg-bugs
CC: (none) => marja11

Comment 2 Nicolas Salguero 2021-09-27 10:59:24 CEST 
Hi,

libjpeg-2.1.1-1.mga9 is built.

Best regards,

Nico.

Resolution: (none) => FIXED
Status: NEW => RESOLVED
CC: (none) => nicolas.salguero
Note You need to log in before you can comment on or make changes to this bug.