KDE has issued an advisory today (February 16): https://kde.org/info/security/advisory-20220216-1.txt The issue is fixed upstream in 21.12.3. Mageia 8 is also affected.
Status comment: (none) => Fixed upstream in 21.12.3Whiteboard: (none) => MGA8TOO
Whiteboard: MGA8TOO => (none)Version: Cauldron => 8CC: (none) => mageia
Fixed in kcron-21.12.0-2.mga9.
Detailed analysis: https://www.openwall.com/lists/oss-security/2022/02/25/3
Mageia 8 EOL
Resolution: (none) => OLDCC: (none) => nicolas.salgueroStatus: NEW => RESOLVED