Fedora has issued an advisory on September 7: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FHOIRL6XH5NYR3LYI3KP5DE4SDSQWR7W/ Mageia 8 and 9 are also affected.
Source RPM: (none) => erofs-utils-1.5-1.mga9.src.rpmCC: (none) => nicolas.salgueroWhiteboard: (none) => MGA9TOO, MGA8TOO
Version : 1.6.3 "- Backport patches for CVE-2023-33551 and CVE-2023-33552." Thierry is the clear committer for this pkg, so assigning to you.
Assignee: bugsquad => thierry.vignaudStatus comment: (none) => Fixed in v1.6.3