Ubuntu has issued an advisory today (September 21): https://ubuntu.com/security/notices/USN-5625-1 The issue is fixed upstream in 1.2.2. Mageia 8 is also affected.
Status comment: (none) => Fixed upstream in 1.2.2Whiteboard: (none) => MGA8TOO
Debian-LTS has issued an advisory for this on September 21: https://www.debian.org/lts/security/2022/dla-3116
Assigning to the python stack maintainers, CC'ing the registered maintainer.
Assignee: bugsquad => pythonCC: (none) => makowski.mageia, marja11
Cauldron is updated Update in Mageia 8 is coming. python3-mako-1.2.2-1.mga8 Source: python-mako-1.2.2-1.mga8
Assignee: python => qa-bugsStatus comment: Fixed upstream in 1.2.2 => (none)Version: Cauldron => 8Whiteboard: MGA8TOO => (none)CC: (none) => yves.brungard_mageia
To know where it is used: urpmq --whatrequires python3-mako deluge openlp prewikka pyff python-gnuradio-runtime python3-alembic python3-catcher python3-dogpile-cache python3-mako python3-opencl python3-pecan python3-pycuda python3-zzzeeksphinx wapiti Extracts from description: Mako is a template library written in Python. Mako's syntax and API borrows from the best ideas of many others, including Django templates, Cheetah, Myghty, and Genshi.
MGA8-64 Plasma on Acer-Aspire 5253 No installation issues. Tx papoteur for the pointers $ strace -o mako.txt deluge jumped a bit around in the menus, quit and checked output. Found a lot of references to /usr/lib/python3.8/site-packages/Mako-1.2.2-py3.8.egg-info/PKG-INFO and similar ones. Seems OK.
Whiteboard: (none) => MGA8-64-OKCC: (none) => herman.viaene
Validating.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
Keywords: (none) => advisoryCC: (none) => davidwhodgins
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0350.html
Status: NEW => RESOLVEDResolution: (none) => FIXED