Fedora has issued an advisory on April 14: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/BQEY4FM5EEVUSDD4ZW7732TQHEELJJMM/ Mageia 8 is also affected.
Whiteboard: (none) => MGA8TOOStatus comment: (none) => Patches available from Fedora
Various packagers have dealt with this SRPM, so assigning the update globally.
Assignee: bugsquad => pkg-bugs
Suggested advisory: ======================== The updated package fixes security vulnerabilities: Out-of-bounds memory access in DXF loader. (CVE-2022-0496) Out-of-bounds memory access in comment parser. (CVE-2022-0497) References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0496 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0497 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/BQEY4FM5EEVUSDD4ZW7732TQHEELJJMM/ ======================== Updated packages in core/updates_testing: ======================== openscad-2021.01-1.3.mga8 from SRPM: openscad-2021.01-1.3.mga8.src.rpm
CC: (none) => nicolas.salgueroWhiteboard: MGA8TOO => (none)Assignee: pkg-bugs => qa-bugsSource RPM: openscad-2021.01-7.mga9.src.rpm => openscad-2021.01-1.2.mga8.src.rpmStatus: NEW => ASSIGNEDVersion: Cauldron => 8Status comment: Patches available from Fedora => (none)
mga8-64 OK Quick test : 1) launching openscad from konsole, 2) open animation.scad 3) checkmark "Animate" in menu "View" 4) in field "FPS" enter "10", in "Steps" enter "100" 5) watch the animation, play with parameters in right pane 6) opened CSG.scad, rendered, and then exported STL. 7) Menu Window > Editor, edited some, Preview -> OK
Whiteboard: (none) => MGA8-64-OKCC: (none) => fri, sysadmin-bugsKeywords: (none) => validated_update
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0148.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED