Those issues were announced here: https://www.openwall.com/lists/oss-security/2024/05/08/3 They are fixed in version 1.21.10.
Status comment: (none) => Fixed upstream in 1.21.10CVE: (none) => CVE-2024-24787, CVE-2024-24788Source RPM: (none) => golang-1.21.9-1.mga9.src.rpm
CC registered maintainer though seem not much active here, so also CC Bruno C who have done most updates recently plus assign all.
Assignee: bugsquad => pkg-bugsCC: (none) => bruno.cornec, fri, joequant
CVE-2024-24787 only affects macOS. Suggested advisory: ======================== The updated packages fix a security vulnerability: A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop. (CVE-2024-24788) References: https://www.openwall.com/lists/oss-security/2024/05/08/3 ======================== Updated packages in core/updates_testing: ======================== golang-1.21.10-1.mga9 golang-bin-1.21.10-1.mga9 golang-docs-1.21.10-1.mga9 golang-misc-1.21.10-1.mga9 golang-shared-1.21.10-1.mga9 golang-src-1.21.10-1.mga9 golang-tests-1.21.10-1.mga9 from SRPM: golang-1.21.10-1.mga9.src.rpm
Summary: golang new security issues CVE-2024-2478[78] => golang new security issue CVE-2024-24788Status comment: Fixed upstream in 1.21.10 => (none)Assignee: pkg-bugs => qa-bugsCVE: CVE-2024-24787, CVE-2024-24788 => CVE-2024-24788Status: NEW => ASSIGNED
Keywords: (none) => advisory
MGA9-64 Plasma Wayland on HP-Pavillion No installation issues.Checked previous updates , but testing wih docker is out of my league. At least no ill effects.
CC: (none) => herman.viaene
Get docker with mgarepo and add the packages to qarepo Get the buildrequires and can confirm some of the packages in qarepo are fetched as part of the packages to build docker Build docker without issues
CC: (none) => andrewsfarmWhiteboard: (none) => MGA9-64-OK
I remember building docker on Foolishness for a previous 32-bit-only bug. It was an... experience. Thing is, I don't remember any of the details of how to do it, so I'd have a difficult time repeating the feat. You're in good company, Herman. Validating.
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2024-0181.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED