Bug 12961

Summary:	Leptonica Security fixed CVE-2020-36280
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Svyatoslav Matveev <s.matveev>
Component:	Packages from Main	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	critical
Priority:	High	CC:	a.proklov, pastordidi, survolog, v.potapov
Version:	All	Flags:	v.potapov: qa_verified+ a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
Whiteboard:
Platform:	2021.1	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Svyatoslav Matveev 2022-12-01 14:39:43 MSK

********** QA ADVISORY **********

fixed CVE-2020-36280

*** leptonica
https://abf.io/build_lists/4180188
https://abf.io/build_lists/4180189
https://abf.io/build_lists/4180187
https://abf.io/build_lists/4180191
https://abf.io/build_lists/4180190

Comment 1 Grigorev Andrey 2022-12-20 00:00:40 MSK

Required rebuild crow-translate with leptonica by QA.

crow-translate 2.10.1-1
https://abf.io/build_lists/4190954
https://abf.io/build_lists/4190952
https://abf.io/build_lists/4190953
https://abf.io/build_lists/4190955
https://abf.io/build_lists/4190956

Comment 2 Dmitry Postnikov 2022-12-20 09:54:39 MSK

***************************
The update sent to testings

Comment 3 Vladimir Potapov 2022-12-20 10:29:45 MSK

crow-translate-2.10.1-1
https://abf.io/build_lists/4190954
https://abf.io/build_lists/4190952
https://abf.io/build_lists/4190953
https://abf.io/build_lists/4190955
https://abf.io/build_lists/4190956
******************************* Advisory *******************************
fixed CVE-2020-36280
************************************************************************
QA Verified