Ubuntu has issued an advisory today (February 18): http://www.ubuntu.com/usn/usn-1727-1/ Mageia 2 is also affected. There is also an upstream advisory: http://www.boost.org/users/news/boost_locale_security_notice.html
CC: (none) => shlomif
Assignee: bugsquad => shlomif
Whiteboard: (none) => MGA2TOO
CC: (none) => zen25000
Depends on: (none) => 9127
Can we get this pushed in Cauldron? I know a couple packages don't build with it, but it's no worse than the current one in that regard. We need to get this fixed.
Fixed by Funda in boost-1.52.0-4.mga3.
Status: NEW => RESOLVEDResolution: (none) => FIXED