Bug 30771 - systemd new security issue CVE-2022-2526
Summary: systemd new security issue CVE-2022-2526
Status: RESOLVED INVALID
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal critical
Target Milestone: ---
Assignee: Thomas Backlund
QA Contact: Sec team
URL:
Whiteboard: MGA8TOO
Keywords:
Depends on:
Blocks:
 
Reported: 2022-08-24 21:27 CEST by David Walser
Modified: 2022-08-24 21:54 CEST (History)
0 users

See Also:
Source RPM: systemd-251.4-1.mga9.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2022-08-24 21:27:52 CEST 
RedHat has issued an advisory today (August 24):
https://access.redhat.com/errata/RHSA-2022:6160

Mageia 8 is also affected.
David Walser 2022-08-24 21:27:59 CEST

Whiteboard: (none) => MGA8TOO

Comment 1 Thomas Backlund 2022-08-24 21:52:32 CEST 
 Ancient bug.

 Fix landed upstream in 2018 in v240, and mga8 has v246.

Resolution: (none) => INVALID
Status: NEW => RESOLVED

Comment 2 David Walser 2022-08-24 21:54:39 CEST 
I see, thanks.  I guess they only recently realized the security implications of the fix, hence the 2022 CVE.
Note You need to log in before you can comment on or make changes to this bug.