Fedora has issued an advisory today (December 2): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/DO2JJCQZGGB7E7RSP775ARXODFQLBYXL/ Mageia 8 is also affected.
Status comment: (none) => Patch available from FedoraWhiteboard: (none) => MGA8TOO
Assigning this globally as there is no packager in view for libetpan.
Assignee: bugsquad => pkg-bugs
Suggested advisory: ======================== The updated packages fix a security vulnerability: Null pointer dereference in mailimap_mailbox_data_status_free in low-level/imap/mailimap_types.c. (CVE-2022-4121) References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4121 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/DO2JJCQZGGB7E7RSP775ARXODFQLBYXL/ ======================== Updated packages in core/updates_testing: ======================== lib(64)etpan20-1.9.4-4.1.mga8 lib(64)etpan-devel-1.9.4-4.1.mga8 from SRPM: libetpan-1.9.4-4.1.mga8.src.rpm
Source RPM: libetpan-1.9.4-5.mga9.src.rpm => libetpan-1.9.4-4.mga8.src.rpmStatus comment: Patch available from Fedora => (none)Status: NEW => ASSIGNEDAssignee: pkg-bugs => qa-bugsVersion: Cauldron => 8CC: (none) => nicolas.salgueroWhiteboard: MGA8TOO => (none)CVE: (none) => CVE-2022-4121
MGA8-64 MATE on Acer Aspire 5253 No installation issues Ref bug 27168 testing by using claws-mail to send ans receive mails without and with attachaments, all OK.
Whiteboard: (none) => MGA8-64-OKCC: (none) => herman.viaene
Validating. Advisory in Comment 2.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0470.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED