| Summary: | [CVE 21] openslp 2.0.0 CVE | ||
|---|---|---|---|
| Product: | [ROSA-based products] ROSA Fresh | Reporter: | Vladimir Potapov <v.potapov> |
| Component: | Packages from Main | Assignee: | ROSA Linux Bugs <bugs> |
| Status: | VERIFIED FIXED | QA Contact: | ROSA Linux Bugs <bugs> |
| Severity: | blocker | ||
| Priority: | Highest | CC: | a.proklov, pastordidi, s.matveev |
| Version: | All | Flags: | v.potapov:
qa_verified+
v.potapov: secteam_verified? a.proklov: published+ |
| Target Milestone: | 2021.1 Fresh R12 | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Platform: | 2021.1 | ROSA Vulnerability identifier: | |
| RPM Package: | ISO-related: | ||
| Bad POT generating: | Upstream: | ||
|
Description
Vladimir Potapov
2024-01-11 08:18:16 MSK
CVE-2016-4912 уже исправлена у нас. https://abf.io/import/openslp/blob/rosa2021.1/openslp-2.0.0-null-pointer-deref.patch (In reply to Svyatoslav Matveev from comment #1) > CVE-2016-4912 уже исправлена у нас. > > https://abf.io/import/openslp/blob/rosa2021.1/openslp-2.0.0-null-pointer- > deref.patch Хорошо бы переименовать патч, чтоб находился. ********** QA ADVISORY ********** Rebuild. openslp-2.0.0-null-pointer-deref.patch обозначен как CVE-2016-4912 *** openslp ** 2.0.0 release +1 https://abf.io/build_lists/4955898 https://abf.io/build_lists/4955899 https://abf.io/build_lists/4955896 https://abf.io/build_lists/4955895 https://abf.io/build_lists/4955897 *** rosa2021.15 (опубликовано) ***************************** Обновление отослано в Тестинг openslp-2.0.0-10 https://abf.io/build_lists/4955898 https://abf.io/build_lists/4955899 https://abf.io/build_lists/4955896 https://abf.io/build_lists/4955895 https://abf.io/build_lists/4955897 **************************** Advisory *********************** Rebuild with CVEs fix refactoring ************************************************************* QA Verified |