Bug 9672 - ngircd new security issue CVE-2013-1747
Summary: ngircd new security issue CVE-2013-1747
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal major
Target Milestone: ---
Assignee: Oden Eriksson
QA Contact: Sec team
URL: http://lwn.net/Vulnerabilities/546498/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-04-08 23:13 CEST by David Walser
Modified: 2013-04-13 23:19 CEST (History)
0 users

See Also:
Source RPM: ngircd-20-4.mga3.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2013-04-08 23:13:48 CEST 
Fedora has issued an advisory on March 30:
http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html

Reproducible: 

Steps to Reproduce:
Comment 1 Oden Eriksson 2013-04-09 07:46:18 CEST 
What to do now when cauldron is frozen. Wait for mga3 stable?
Comment 2 David Walser 2013-04-09 12:56:35 CEST 
(In reply to Oden Eriksson from comment #1)
> What to do now when cauldron is frozen. Wait for mga3 stable?

Go ahead and fix it, and we'll just need to send a freeze push request to the mailing list to get it built (I can send the request once it's ready).
Comment 3 Oden Eriksson 2013-04-09 13:34:56 CEST 
OK. Due time.
Comment 4 Oden Eriksson 2013-04-13 17:02:17 CEST 
Fixed. Someone has to submit this to cauldron.
Comment 5 David Walser 2013-04-13 23:19:22 CEST 
Thanks Oden!

Fixed in ngircd-20.2-1.mga3.

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.