Fedora has issued an advisory on October 26: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/TAVB3ZX7E5ULEXESU5NXZIAHY6CVGCHB/ Mageia 8 is also affected.
Whiteboard: (none) => MGA8TOOStatus comment: (none) => Patches available from Fedora
Assigning to Jani, registered maintainer.
Assignee: bugsquad => jani.valimaa
openSUSE has issued an advisory for this on October 31: https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/SYRTRE3WPQSFOZ2DYZDAYDI3Q7I53AB6/
openSUSE has issued an advisory on November 14: https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VFW7LPBWACIK5T4XBHVQEUEXUGR6W2Q7/ Mageia 8 is also affected.
Summary: jhead new security issue CVE-2022-41751 => jhead new security issues CVE-2021-34055 and CVE-2022-41751Status comment: Patches available from Fedora => Patches available from Fedora and openSUSE
Debian has issued an advisory for this on December 4: https://www.debian.org/security/2022/dsa-5294
Ubuntu has issued an advisory for this on May 25: https://ubuntu.com/security/notices/USN-6108-1 Freeze move requested for jhead 3.08 in Cauldron, which should fix these.
Fixed on cauldron!
Version: Cauldron => 8CC: (none) => geiger.david68210Whiteboard: MGA8TOO => (none)
Mageia 8 EOL
CC: (none) => nicolas.salgueroStatus: NEW => RESOLVEDResolution: (none) => OLD