+++ This bug was initially created as a clone of Bug #31359 +++ Debian-LTS has issued an advisory on December 31: https://www.debian.org/lts/security/2022/dla-3254 The issue appears to be fixed in version 6.0.0 of apparent fork universal-ctags, which Debian has packaged. We should probably switch Cauldron to this version. Mageia 8 is also affected. Security issue has been patched, but we still need to switch to the new maintained upstream. As noted in the previous bug, Gentoo has also switched: https://packages.gentoo.org/packages/dev-util/ctags
Hi, ctags-6.0.0-1.mga9 built successfully. It now needs to be tested to see if upgrading from the previous version works correctly because I am not an expert of update-alternatives. Best regards, Nico.
CC: (none) => nicolas.salguero
Indeed, I asked for testing on qa-discuss and Dave said the alternative link didn't get updated. I wonder if there needs to be a scriptlet that triggers on pre-6.0 versions that needs to delete /etc/alternatives/ctags to allow update-alternatives to reset the link.
Jani fixed it. Thanks!
CC: (none) => jani.valimaaStatus: NEW => RESOLVEDResolution: (none) => FIXED