31099 – conmon new security issue CVE-2022-1708

Bug 31099 - conmon new security issue CVE-2022-1708

Summary: conmon new security issue CVE-2022-1708

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	8
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Joseph Wang
QA Contact:	Sec team

URL:
Whiteboard:
Keywords:

Depends on:	28885
Blocks:
	Show dependency tree / graph

Reported:	2022-11-09 17:36 CET by David Walser
Modified:	2023-07-07 22:50 CEST (History)
CC List:	1 user (show)

See Also:
Source RPM:	conmon-2.0.20-1.mga8.src.rpm
CVE:
Status comment:	Fixed upstream in 2.1.2

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2022-11-09 17:36:46 CET

SUSE has issued an advisory on November 8:
https://lists.suse.com/pipermail/sle-security-updates/2022-November/012837.html

The issue is fixed upstream in 2.1.2.

David Walser 2022-11-09 17:37:47 CET

Status comment: (none) => Fixed upstream in 2.1.2

Comment 1 Lewis Smith 2022-11-09 20:35:30 CET

Joseph, you are clearly the active maintainer of this pkg, so assigning this to you.

Assignee: bugsquad => joequant

David GEIGER 2023-06-29 20:50:35 CEST

CC: (none) => geiger.david68210
Depends on: (none) => 28885

Comment 2 David Walser 2023-07-07 22:50:04 CEST

Fixed in:
https://advisories.mageia.org/MGASA-2023-0213.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Note You need to log in before you can comment on or make changes to this bug.