Security issues

Mageia Cauldron

Bug number Summary (hover for RPM name) Assignee Versions affected Status comment Date created Last action (days) Quick search
19800 dracut new security issue CVE-2016-4484 Mageia tools maintainers Cauldron, 7, 8 Should be mitigated by the installer 2016-11-16 84 Bugzilla
24107 dcraw new security issues CVE-2018-1956[5-8] All Packagers Cauldron, 7, 8 No fix available as of end of 2020 2019-01-01 98
24817 resteasy new security issue CVE-2016-6346 Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 3.5.1 2019-05-14 165 Bugzilla
26629 python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 Philippe Makowski Cauldron, 7, 8 No fix available as of end of 2020 2020-05-15 171 Bugzilla
27750 resteasy new security issue CVE-2020-25633 Java Stack Maintainers Cauldron, 7, 8 No fix available as of end of 2020 2020-12-05 118 Bugzilla
27757 ganglia-web security vulnerability CVE-2019-20379 Johnny A. Solbu Cauldron, 7, 8 No fix available as of end of 2020 2020-12-06 36 Bugzilla
27771 hdf5 new security issue CVE-2020-10812 Chris Denice Cauldron, 7, 8 No fix available as of end of 2020 2020-12-07 172 Bugzilla
28536 389-ds-base new security issue CVE-2020-35518 All Packagers Cauldron 2021-03-06 9 Bugzilla
28732 chromium-browser-stable new security issues fixed in 91.0.4472.101 and CVE-2021-30535 in icu Christiaan Welvaart Cauldron, 7, 8 2021-04-05 6 Bugzilla
28844 xstream new security issues CVE-2021-2134[1-9] and CVE-2021-2135[01] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 1.4.16 2021-04-27 12 Bugzilla
28882 libtpms new security issues CVE-2021-3446 and CVE-2021-3505 Thierry Vignaud Cauldron, 7, 8 Fixed upstream in 0.8.2 2021-05-06 20 Bugzilla
28885 skopeo, buildah, podman new security issue CVE-2021-20291 Joseph Wang Cauldron, 8 2021-05-06 20 Bugzilla
28903 p7zip new security issue CVE-2021-3465 David GEIGER Cauldron, 7, 8 Patch available from upstream 2021-05-11 19 Bugzilla
28924 maven new security issue CVE-2021-26291 Java Stack Maintainers Cauldron 2021-05-15 34 Bugzilla
28939 rxvt-unicode, mrxvt, eterm security issue via ANSI escape sequences (CVE-2021-33477) All Packagers Cauldron, 8 2021-05-18 8 Bugzilla
28962 opencontainers-runc new security issue CVE-2021-30465 Bruno Cornec Cauldron, 7, 8 Fixed upstream in 1.0.0-rc95 2021-05-25 17 Bugzilla
28976 dhcp new security issue CVE-2021-25217 All Packagers Cauldron, 7, 8 Fixed upstream in 4.4.2-P1 2021-05-27 12 Bugzilla
28985 netty new security issues CVE-2021-21295 and CVE-2021-21409 Java Stack Maintainers Cauldron, 8 Fixed upstream in 4.1.61 2021-05-28 21 Bugzilla
28996 php-smarty new security issues CVE-2021-26119 and CVE-2021-26120 Marc Krämer Cauldron, 7, 8 Fixed upstream in 3.1.39 2021-05-28 20 Bugzilla
29002 python-pillow new security issues CVE-2021-2528[7-9], CVE-2021-2529[0-3], CVE-2021-2792[1-3], CVE-20[...] Python Stack Maintainers Cauldron, 7, 8 Fixed upstream in 8.2.0 2021-05-29 18 Bugzilla
29004 ruby new security issue CVE-2021-28965 Pascal Terjan Cauldron, 7, 8 Fixed upstream in 2.7.3 2021-05-29 19 Bugzilla
29005 openexr new security issues CVE-2021-347[4-9], CVE-2021-20296, CVE-2021-23169, CVE-2021-23215, CVE-2[...] All Packagers Cauldron, 7, 8 Patches available from Ubuntu and Fedora 2021-05-29 16 Bugzilla
29018 lib3mf new security issue CVE-2021-21772 David GEIGER Cauldron, 8 Fixed upstream in 2.0.1 2021-05-29 20 Bugzilla
29027 singularity new security issue CVE-2021-29136 and CVE-2021-32635 Joseph Wang Cauldron, 8 Fixed upstream in 3.7.4 2021-05-29 12 Bugzilla
29035 opendmarc new security issues CVE-2019-20790, CVE-2020-12272, CVE-2020-12460 Raphael Gertz Cauldron, 8 Fixed upstream in 1.4.1 2021-05-30 18 Bugzilla
29037 golang new security issues CVE-2021-27918 and CVE-2021-31525 All Packagers Cauldron, 7, 8 Fixed upstream in 1.15.12 2021-05-30 19 Bugzilla
29041 python-urllib3 new security issue CVE-2021-28363 Python Stack Maintainers Cauldron, 8 Fixed upstream in 1.26.4 2021-05-30 19 Bugzilla
29042 python new security issue CVE-2020-27619 Python Stack Maintainers Cauldron, 7, 8 Patch available from Fedora 2021-05-30 19 Bugzilla
29047 crmsh new security issue CVE-2021-3020 Nicolas Lécureuil Cauldron, 7, 8 2021-05-30 16 Bugzilla
29048 eclipse new security issue CVE-2020-27225 Java Stack Maintainers Cauldron, 7, 8 2021-05-30 19 Bugzilla
29052 python-django-registration new security issue CVE-2021-21416 Nicolas Lécureuil Cauldron, 7, 8 Fixed upstream in 3.1.2 2021-05-30 16 Bugzilla
29059 freeradius new security issue bsc#1180525 All Packagers Cauldron, 7, 8 Fixed upstream in 3.0.22 2021-05-30 2 Bugzilla
29092 libgrss new security issue CVE-2016-20011 Olav Vitters Cauldron, 7, 8 2021-06-08 10 Bugzilla
29125 pdfbox new security issues CVE-2021-3181[12] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 2.0.24 2021-06-13 5 Bugzilla
29126 transfig new security issue CVE-2021-3561 David GEIGER Cauldron, 7, 8 Fixed upstream in 3.2.8a 2021-06-13 4 Bugzilla
29127 openjpeg2 new security issue CVE-2021-3575 David GEIGER Cauldron, 7, 8 Patch available from Fedora 2021-06-14 4 Bugzilla
29141 libjpeg new security issue CVE-2020-17541 David GEIGER Cauldron, 7, 8 2021-06-16 1 Bugzilla
29142 glibc new security issue CVE-2021-33574 Thomas Backlund Cauldron, 8 Fixed upstream in 2.34 2021-06-16 2 Bugzilla
29143 expat new security issue CVE-2013-0340 All Packagers Cauldron 2021-06-16 1 Bugzilla
29144 aom new security issues CVE-2021-3047[35] All Packagers Cauldron, 7, 8 2021-06-16 1 Bugzilla
Number: 40

Mageia 7

Bug number Summary (hover for RPM name) Assignee Versions affected Status comment Date created Last action (days) Quick search
16461 hornetq new security issue CVE-2015-3208 Nicolas Lécureuil 7 2015-07-24 174 Bugzilla
19800 dracut new security issue CVE-2016-4484 Mageia tools maintainers Cauldron, 7, 8 Should be mitigated by the installer 2016-11-16 84 Bugzilla
21999 hadoop new security issues CVE-2016-6811, CVE-2017-3166, CVE-2017-1571[38], CVE-2018-1296, CVE-2018-[...] Nicolas Lécureuil 7 Fixed upstream in 2.10.1 2017-11-09 143 Bugzilla
22029 cxf new security issue CVE-2017-12624 (and possibly several older ones) Nicolas Lécureuil 7 Fixed upstream in 3.1.14 2017-11-15 216 Bugzilla
22697 solr3 new security issues CVE-2017-3163, CVE-2017-3164, CVE-2017-12629, CVE-2018-1308, CVE-2018-1180[...] Java Stack Maintainers 7 Patches available from Debian 2018-03-03 61 Bugzilla
22954 tika new security issues CVE-2018-133[589], CVE-2018-8017, CVE-2018-1176[12], CVE-2018-11796, CVE-20[...] Java Stack Maintainers 7 Fixed upstream in 1.26 2018-04-26 80 Bugzilla
22955 uimaj new security issue CVE-2017-15691 Java Stack Maintainers 7 Fixed upstream in 2.10.2 2018-04-27 173 Bugzilla
23003 derby new security issue CVE-2018-1313 Java Stack Maintainers 7 Fixed upstream in 10.14.2.0 2018-05-08 173 Bugzilla
23074 zookeeper new security issues CVE-2018-8012 and CVE-2019-0201 Java Stack Maintainers 7 Patches available from Debian 2018-05-23 173 Bugzilla
23249 cxf new security issues CVE-2018-8039, CVE-2019-12406, CVE-2019-12419, CVE-2019-12423, CVE-2019-1757[...] Java Stack Maintainers 7 Fixed upstream in 3.3.11 2018-06-29 2 Bugzilla
23251 pdfbox new security issues CVE-2018-8036, CVE-2018-11797, and CVE-2019-0228 Java Stack Maintainers 7 Fixed upstream in 2.0.16 2018-06-29 76 Bugzilla
23724 hibernate-validator new security issues CVE-2017-7536 and CVE-2020-10693 Java Stack Maintainers 7 2018-10-17 232 Bugzilla
23799 u-boot new security issues CVE-2018-18439, CVE-2018-18440 Olivier Blin 7 Fixed upstream in 2019.04 2018-11-02 173 Bugzilla
23859 qpid-proton-java new security issues CVE-2018-17187 and CVE-2019-0223 Java Stack Maintainers 7 Fixed upstream in 0.30.0 2018-11-19 174 Bugzilla
23973 scala new security issue CVE-2017-15288 Java Stack Maintainers 7 Fixed upstream in 2.10.7 2018-12-08 163 Bugzilla
23975 springframework new security issues CVE-2018-1257, CVE-2018-1270, CVE-2018-11039, CVE-2018-11040, CV[...] Java Stack Maintainers 7 2018-12-08 21 Bugzilla
23976 springframework-data-commons new security issue CVE-2018-1273 Java Stack Maintainers 7 2018-12-08 174 Bugzilla
24107 dcraw new security issues CVE-2018-1956[5-8] All Packagers Cauldron, 7, 8 No fix available as of end of 2020 2019-01-01 98
24174 thrift new security issues CVE-2018-1320 and CVE-2018-11798 Java Stack Maintainers 7 Fixed upstream in 0.12.0 2019-01-13 119 Bugzilla
24509 guacd new security issue CVE-2018-1340 Nicolas Lécureuil 7 Fixed upstream in 1.0.0 2019-03-13 123 Bugzilla
24668 apache-mina new security issue CVE-2019-0231 Java Stack Maintainers 7 Fixed upstream in 2.0.21 2019-04-15 174 Bugzilla
24817 resteasy new security issue CVE-2016-6346 Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 3.5.1 2019-05-14 165 Bugzilla
24899 python-django new security issues CVE-2019-12308, CVE-2019-12781, CVE-2019-1423[2-5], CVE-2019-19118[...] Nicolas Lécureuil 7 Needs 5+ more patches to be added 2019-06-04 12 Bugzilla
25112 libosinfo new security issue CVE-2019-13313 Nicolas Lécureuil 7 2019-07-12 100 Bugzilla
25599 apache-poi new security issue CVE-2019-12415 Java Stack Maintainers 7 Fixed upstream in 4.1.1 2019-10-23 173 Bugzilla
25799 u-boot new security issues CVE-2019-1310[3-6] Olivier Blin 7 Patches available from upstream 2019-12-03 163 Bugzilla
25965 ruby-rubyzip new security issue CVE-2019-16892 Nicolas Lécureuil 7 2019-12-27 92 Bugzilla
25970 rabbitmq-server new security issues CVE-2019-1128[17] Nicolas Lécureuil 7 Fixed upstream in 3.7.21 2019-12-27 290 Bugzilla
25971 librabbitmq new security issue CVE-2019-18609 Nicolas Lécureuil 7 Fixed upstream in 0.10.0 2019-12-27 225 Bugzilla
26019 netty, netty3 new security issues CVE-2019-16869, CVE-2019-20444, CVE-2019-20445, CVE-2020-7238, CVE[...] Java Stack Maintainers 7 Fixed upstream in 4.1.61 2020-01-05 19 Bugzilla
26066 virglrenderer new security issues CVE-2019-1838[89] and CVE-2019-1839[01] Nicolas Lécureuil 7 Update failed to build 2020-01-13 98 Bugzilla
26080 mysql-workbench new security issues CVE-2019-16168, CVE-2020-1730, CVE-2020-1967 All Packagers 7 Fixed upstream in 8.0.22 2020-01-15 232 Bugzilla
26147 aws-cli new security issue CVE-2018-15869 Buchan Milne 7 Fixed upstream in 1.16.297 2020-01-29 173 Bugzilla
26270 sqlite3 new security issues CVE-2020-9327, CVE-2020-11655, CVE-2020-1343[45], CVE-2020-1363[0-2], C[...] Thierry Vignaud 7 Patches available from Google and Ubuntu 2020-02-27 94 Bugzilla
26273 pycharm-community new security issue CVE-2019-14958 Stig-Ørjan Smelror 7 Fixed upstream in 2019.2, needs to be built from source rather than shipping pre-built binaries 2020-02-29 172 Bugzilla
26358 u-boot new security issues CVE-2020-8432 and CVE-2020-10648 Olivier Blin 7 Patches proposed upstream 2020-03-18 163 Bugzilla
26521 mysql-workbench new security issues CVE-2019-14889, CVE-2019-15601, CVE-2019-19646 All Packagers 7 2020-04-21 174 Bugzilla
26530 puppet new security issues CVE-2018-11751 and CVE-2020-794[23] All Packagers 7 Fixed upstream in 6.13.0 2020-04-23 170 Bugzilla
26541 log4j, log4j12 new security issue CVE-2020-9488 Java Stack Maintainers 7 Fixed upstream in 2.13.2, log4j12 also needs to be patched 2020-04-26 173 Bugzilla
26556 snakeyaml new security issue CVE-2017-18640 Java Stack Maintainers 7 Fixed upstream in 1.26 2020-04-28 390 Bugzilla
26629 python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 Philippe Makowski Cauldron, 7, 8 No fix available as of end of 2020 2020-05-15 171 Bugzilla
26658 trousers new security issues in tscd (CVE-2020-2433[0-2]) Nicolas Lécureuil 7 Needs change to tcsd.conf from Fedora 2020-05-21 29 Bugzilla
26756 sympa new security issues CVE-2020-10936, CVE-2020-26880, and CVE-2020-29668 All Packagers 7 Fixed upstream in 6.2.60 2020-06-09 106 Bugzilla
27018 grub2 new security issues CVE-2020-10713, CVE-2020-1430[89], CVE-2020-1431[01], CVE-2020-14372, CVE-[...] All Packagers 7, 8 Fixed upstream in git 2020-07-29 19 Bugzilla
27034 net-snmp new security issues CVE-2019-20892, CVE-2020-15861, and CVE-2020-15862 All Packagers 7 snmpd fails looking for /dev/kmem 2020-08-04 149 Bugzilla
27043 systemd new security issue CVE-2020-13776 Stig-Ørjan Smelror 7 Patches available from upstream 2020-08-05 29 Bugzilla
27108 libcroco new security issue CVE-2020-12825 (and others unfixed due to it being unmaintained) All Packagers 7 inkscape and cinnamon need to be patched 2020-08-14 173 Bugzilla
27131 Possible missing security fixes in several libraries used by PHP modules All Packagers 7 2020-08-18 160
27171 perl-PlRPC new security issue CVE-2013-7284 All Packagers 7 Not fixed upstream as of end of 2020 2020-08-21 167 Bugzilla
27200 guile1.8 missing fixes for CVE-2016-8605 and CVE-2016-8606 All Packagers 7 Patch available in Cauldron 2020-08-26 172 Bugzilla
27231 filezilla new security issue CVE-2020-14002 due to bundled PuTTY David GEIGER 7 2020-08-31 291 Bugzilla
27232 neomutt new security issues CVE-2020-14093, CVE-2020-14154, CVE-2020-14954, CVE-2020-28896 Stig-Ørjan Smelror 7 Fixed upstream in 20201120 2020-08-31 172 Bugzilla
27303 gnome-shell new security issue CVE-2020-17489 GNOME maintainers 7 Patch available from upstream and openSUSE 2020-09-22 98 Bugzilla
27389 httpcomponents-client new security issue CVE-2020-13956 Java Stack Maintainers 7 jakarta-commons-httpclient also needs to be addressed 2020-10-11 168 Bugzilla
27560 qtwebsockets5 new security issue CVE-2018-21035 KDE maintainers 7 Patch available from RedHat 2020-11-04 172 Bugzilla
27593 guacd new security issue CVE-2020-949[78] Nicolas Lécureuil 7 Fixed upstream in 1.2.0 2020-11-11 122 Bugzilla
27649 jetty new security issues CVE-2019-1024[17] and CVE-2020-2721[68] Java Stack Maintainers 7 Fixed upstream in 9.4.35, jetty8 also needs to be patched 2020-11-23 19 Bugzilla
27709 docker new security issue CVE-2020-15257 Bruno Cornec 7 2020-12-02 12 Bugzilla
27723 ampache new security issues CVE-2019-1238[56] All Packagers 7 Patches available from Debian and Ubuntu 2020-12-04 154 Bugzilla
27735 checkstyle new security issue CVE-2019-10782 Nicolas Lécureuil 7 Patch available from Debian 2020-12-04 172 Bugzilla
27750 resteasy new security issue CVE-2020-25633 Java Stack Maintainers Cauldron, 7, 8 No fix available as of end of 2020 2020-12-05 118 Bugzilla
27752 db48 new security issue CVE-2019-2708 Thierry Vignaud 7 db48 needs patch to be backported 2020-12-05 168 Bugzilla
27756 libndpi securty issue CVE-2020-15475 Stig-Ørjan Smelror 7 Fixed upstream in 3.4, updating would require updating ntopng 2020-12-06 172 Bugzilla
27757 ganglia-web security vulnerability CVE-2019-20379 Johnny A. Solbu Cauldron, 7, 8 No fix available as of end of 2020 2020-12-06 36 Bugzilla
27767 groovy new security issue CVE-2020-17521 Java Stack Maintainers 7 Fixed upstream in 2.4.21 2020-12-06 168 Bugzilla
27771 hdf5 new security issue CVE-2020-10812 Chris Denice Cauldron, 7, 8 No fix available as of end of 2020 2020-12-07 172 Bugzilla
27849 xstream new security issue CVE-2020-26217 Java Stack Maintainers 7 Fixed upstream in 1.4.14, patch available from Debian 2020-12-16 146 Bugzilla
27879 qemu several security issues Thierry Vignaud 7 2020-12-19 172 Bugzilla
27904 gdm new security issue CVE-2020-27837 All Packagers 7 Upstream patch needs to be backported to 3.32.x 2020-12-22 172 Bugzilla
27964 glpi new security issues CVE-2020-5248, CVE-2020-1106[02], CVE-2020-11031, CVE-2020-15108, CVE-2020-[...] Guillaume Rousse 7 Fixed upstream in 9.5.3 2020-12-29 151 Bugzilla
27972 nodejs-handlebars new security issue CVE-2019-20922 Stig-Ørjan Smelror 7 Fixed upstream in 4.4.5 2020-12-29 169 Bugzilla
27973 nodejs-lodash new security issue CVE-2020-8203 Joseph Wang 7 Fixed upstream in 4.17.20 2020-12-29 169 Bugzilla
27974 nodejs-minimist new security issue CVE-2020-7598 All Packagers 7 Fixed upstream in 1.2.2 2020-12-29 170 Bugzilla
27978 xymon new security issues CVE-2019-1327[34] CVE-2019-1345[125] CVE-2019-1347[34] CVE-2019-1348[4-6] All Packagers 7 Fixed upstream in 4.3.29 (regression fixes in 4.3.30), patches available from Debian 2020-12-29 170 Bugzilla
27980 xstream new security issues CVE-2020-2625[89] Java Stack Maintainers 7 Fixed upstream in 1.4.15 2020-12-29 52 Bugzilla
28085 wavpack new security issue CVE-2020-35738 Nicolas Lécureuil 7 Patch available from upstream and Ubuntu 2021-01-13 148 Bugzilla
28087 libzypp, zypper new security issue CVE-2017-9271 Nicolas Lécureuil 7 Fixed upstream in libzypp 17.25.4 / zypper 1.14.41 2021-01-13 154 Bugzilla
28088 graphicsmagick 1.3.36 fixes security issues Stig-Ørjan Smelror 7 2021-01-13 155 Bugzilla
28089 binutils new security issues CVE-2020-3549[3-6] Base system maintainers 7 2021-01-13 132 Bugzilla
28090 xmlbeans new security issue CVE-2021-23926 Java Stack Maintainers 7 Fixed upstream in 3.0.0 2021-01-13 156 Bugzilla
28108 open-iscsi new security issues CVE-2020-1398[78] and CVE-2020-1743[78] All Packagers 7 Fixed upstream in 2.1.3 2021-01-15 144 Bugzilla
28109 adplug new security issues CVE-2019-1469[0-2] CVE-2019-1473[2-4] CVE-2019-15151 David GEIGER 7 Fixed upstream in 2.3.3 2021-01-15 151 Bugzilla
28137 python-pillow new security issue CVE-2020-3565[3-5] All Packagers 7 Fixed upstream in 8.1.0 2021-01-17 20 Bugzilla
28181 gdk-pixbuf2.0 possible new security issues in GIF loader (including CVE-2020-29385 and CVE-2021-2024[...] Olav Vitters 7 2021-01-21 111 Bugzilla
28228 golang new security issues CVE-2021-3114 and CVE-2021-3115 Joseph Wang 7 Fixed upstream in 1.15.7 2021-01-26 19 Bugzilla
28276 ffmpeg new security issue CVE-2020-35965 All Packagers 7 Patches available from upstream 2021-02-02 114 Bugzilla
28279 qtwebengine5 new security issues fixed upstream in 5.15.2 KDE maintainers 7 2021-02-02 136 Bugzilla
28282 docker new security issues CVE-2021-21284 and CVE-2021-21285 Nicolas Lécureuil 7 Patched in SVN, but doesn't build 2021-02-02 106 Bugzilla
28296 mutt new denial of service security issue (CVE-2021-3181). Is neomutt affected? All Packagers 7 2021-02-05 133 Bugzilla
28305 binutils new security issues CVE-2021-20197 and CVE-2021-3487 Thomas Backlund 7, 8 Upstream fixes WIP as of early February 2021 2021-02-06 18 Bugzilla
28380 thrift, golang-github-apache-thrift new security issue CVE-2020-13949 Java Stack Maintainers 7, 8 Fixed upstream in 0.14.0 2021-02-19 86 Bugzilla
28444 zstd creates compressed files with incorrect permissions (CVE-2021-2403[12]) Thierry Vignaud 7, 8 Patches available from upstream and Debian 2021-02-26 21 Bugzilla
28492 redis new security issue CVE-2021-21309 Colin Guthrie 7 Patch available from Debian 2021-02-28 109 Bugzilla
28501 tomcat new security issues CVE-2021-25122 and CVE-2021-25329 Java Stack Maintainers 7, 8 Fails to load tomcat-users.xml 2021-03-01 1 Bugzilla
28520 glib2.0 new security issues fixed upstream in 2.66.8 (including CVE-2021-2721[89] and CVE-2021-28153[...] Olav Vitters 7 2021-03-04 17 Bugzilla
28615 velocity-tools new security issue CVE-2020-13959 Nicolas Lécureuil 7 2021-03-19 21 Bugzilla
28708 pdfbox new security issues CVE-2021-27807 and CVE-2021-27906 Nicolas Lécureuil 7 Fixed upstream in 2.0.23 2021-04-03 5 Bugzilla
28732 chromium-browser-stable new security issues fixed in 91.0.4472.101 and CVE-2021-30535 in icu Christiaan Welvaart Cauldron, 7, 8 2021-04-05 6 Bugzilla
28800 nettle new security issue CVE-2021-20305 David GEIGER 7, 8 Fixed upstream in 3.7.2 2021-04-18 9 Bugzilla
28803 apache-commons-io new security issue CVE-2021-29425 Java Stack Maintainers 7 2021-04-18 19 Bugzilla
28832 ansible new security issue CVE-2021-3447 Bruno Cornec 7, 8 Fixed upstream in 2.8.20 2021-04-23 19 Bugzilla
28844 xstream new security issues CVE-2021-2134[1-9] and CVE-2021-2135[01] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 1.4.16 2021-04-27 12 Bugzilla
28874 java-1.8.0-openjdk, java-11-openjdk, java-latest-openjdk new security issues Java Stack Maintainers 7 2021-05-04 2 Bugzilla
28882 libtpms new security issues CVE-2021-3446 and CVE-2021-3505 Thierry Vignaud Cauldron, 7, 8 Fixed upstream in 0.8.2 2021-05-06 20 Bugzilla
28903 p7zip new security issue CVE-2021-3465 David GEIGER Cauldron, 7, 8 Patch available from upstream 2021-05-11 19 Bugzilla
28923 libupnp new security issue CVE-2021-29462 David GEIGER 7, 8 Fixed upstream in 1.14.6 2021-05-14 34 Bugzilla
28925 hivex new security issue CVE-2021-3504 Thierry Vignaud 7, 8 Fixed upstream in 1.3.20 2021-05-15 9 Bugzilla
28926 rpm new security issues (including CVE-2021-3421, CVE-2021-20266, and CVE-2021-20271) Thierry Vignaud 7, 8 Fixed upstream in 4.16.1.3 2021-05-15 20 Bugzilla
28937 bash new security issue CVE-2019-18276 All Packagers 7 2021-05-18 30 Bugzilla
28942 glibc new security issue CVE-2016-10228 Thomas Backlund 7 2021-05-18 18 Bugzilla
28947 spice new security issue CVE-2021-20201 Thierry Vignaud 7, 8 Fixed upstream in 0.14.92 2021-05-19 30 Bugzilla
28953 networkmanager new security issue CVE-2021-20297 Jani Välimaa 7, 8 Patch available from upstream 2021-05-20 19 Bugzilla
28962 opencontainers-runc new security issue CVE-2021-30465 Bruno Cornec Cauldron, 7, 8 Fixed upstream in 1.0.0-rc95 2021-05-25 17 Bugzilla
28965 nginx new security issue CVE-2021-23017 Stig-Ørjan Smelror 7, 8 Patch available from upstream 2021-05-25 4 Bugzilla
28976 dhcp new security issue CVE-2021-25217 All Packagers Cauldron, 7, 8 Fixed upstream in 4.4.2-P1 2021-05-27 12 Bugzilla
28977 gstreamer1.0-plugins-base, gstreamer1.0-plugins-bad new security issues fixed upstream in 1.18.4 (in[...] Jani Välimaa 7, 8 2021-05-28 2 Bugzilla
28978 bind new security issue CVE-2021-25214 Guillaume Rousse 7 2021-05-28 21 Bugzilla
28984 nodejs-underscore new security issue CVE-2021-23358 Thierry Vignaud 7 Patch available from Debian 2021-05-28 5 Bugzilla
28988 hibernate3/4/5 new security issue CVE-2020-25638 Java Stack Maintainers 7 Fixed upstream in 5.4.24 2021-05-28 21 Bugzilla
28991 cloud-init new security issue CVE-2021-3429 All Packagers 7, 8 Fixed upstream in 21.2 2021-05-28 16 Bugzilla
28993 jquery new security issues CVE-2020-11022 and CVE-2020-11023 All Packagers 7 Fixed upstream in 3.5.0 2021-05-28 20 Bugzilla
28994 leptonica new security issues CVE-2020-3627[7-9] and CVE-2020-36281 Barry Jackson 7 Fixed upstream in 1.80.0 2021-05-28 20 Bugzilla
28995 busybox new security issue CVE-2021-28831 Stig-Ørjan Smelror 7, 8 Patch available from upstream 2021-05-28 20 Bugzilla
28996 php-smarty new security issues CVE-2021-26119 and CVE-2021-26120 Marc Krämer Cauldron, 7, 8 Fixed upstream in 3.1.39 2021-05-28 20 Bugzilla
28998 pjproject new security issue CVE-2021-21375 All Packagers 7, 8 Fixed upstream in 2.11 2021-05-28 16 Bugzilla
28999 jackson-databind new security issues CVE-2020-24616, CVE-2020-24750, CVE-2020-3549[01], CVE-2020-361[...] Java Stack Maintainers 7 Fixed upstream in 2.9.10.8 2021-05-28 21 Bugzilla
29002 python-pillow new security issues CVE-2021-2528[7-9], CVE-2021-2529[0-3], CVE-2021-2792[1-3], CVE-20[...] Python Stack Maintainers Cauldron, 7, 8 Fixed upstream in 8.2.0 2021-05-29 18 Bugzilla
29004 ruby new security issue CVE-2021-28965 Pascal Terjan Cauldron, 7, 8 Fixed upstream in 2.7.3 2021-05-29 19 Bugzilla
29005 openexr new security issues CVE-2021-347[4-9], CVE-2021-20296, CVE-2021-23169, CVE-2021-23215, CVE-2[...] All Packagers Cauldron, 7, 8 Patches available from Ubuntu and Fedora 2021-05-29 16 Bugzilla
29006 file-roller new security issue CVE-2020-36314 Olav Vitters 7, 8 Fixed upstream in 3.38.1 2021-05-29 16 Bugzilla
29010 python-pip new security issue fixed upstream in 21.1 Python Stack Maintainers 7, 8 Fixed upstream in 21.1 2021-05-29 18 Bugzilla
29021 gnutls new security issues CVE-2021-20231 and CVE-2021-20232 All Packagers 7, 8 Fixed upstream in 3.7.1 2021-05-29 16 Bugzilla
29023 perl-Net-Netmask new security issue CVE-2021-29424 Thierry Vignaud 7, 8 Fixed upstream in 2.0 2021-05-29 20 Bugzilla
29025 perl-Net-CIDR-Lite new security issue fixed upstream in 0.22 Thierry Vignaud 7, 8 2021-05-29 19 Bugzilla
29028 nodejs new security issue CVE-2020-7774 Joseph Wang 7, 8 Fixed upstream in 10.24.1 and 14.16.1 2021-05-29 19 Bugzilla
29034 jetty new security issues CVE-2020-27223 CVE-2021-2816[3-5] Java Stack Maintainers 7, 8 Fixed upstream in 9.4.39 2021-05-30 19 Bugzilla
29037 golang new security issues CVE-2021-27918 and CVE-2021-31525 All Packagers Cauldron, 7, 8 Fixed upstream in 1.15.12 2021-05-30 19 Bugzilla
29042 python new security issue CVE-2020-27619 Python Stack Maintainers Cauldron, 7, 8 Patch available from Fedora 2021-05-30 19 Bugzilla
29047 crmsh new security issue CVE-2021-3020 Nicolas Lécureuil Cauldron, 7, 8 2021-05-30 16 Bugzilla
29048 eclipse new security issue CVE-2020-27225 Java Stack Maintainers Cauldron, 7, 8 2021-05-30 19 Bugzilla
29052 python-django-registration new security issue CVE-2021-21416 Nicolas Lécureuil Cauldron, 7, 8 Fixed upstream in 3.1.2 2021-05-30 16 Bugzilla
29053 jhead new security issues CVE-2020-6624 CVE-2020-6625 CVE-2021-3496 Jani Välimaa 7, 8 Fixed upstream in 3.06.0.1 2021-05-30 19 Bugzilla
29054 imagemagick new security issues CVE-2021-20309 and CVE-2021-2031[1-3] Rémi Verschelde 7, 8 Fixed upstream in 7.0.11 (note: 7.0.11-14 breaks SOVERSION) 2021-05-30 17 Bugzilla
29057 botan2 new security issue CVE-2021-24115 Stig-Ørjan Smelror 7 Patch available from openSUSE 2021-05-30 16 Bugzilla
29059 freeradius new security issue bsc#1180525 All Packagers Cauldron, 7, 8 Fixed upstream in 3.0.22 2021-05-30 2 Bugzilla
29092 libgrss new security issue CVE-2016-20011 Olav Vitters Cauldron, 7, 8 2021-06-08 10 Bugzilla
29125 pdfbox new security issues CVE-2021-3181[12] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 2.0.24 2021-06-13 5 Bugzilla
29126 transfig new security issue CVE-2021-3561 David GEIGER Cauldron, 7, 8 Fixed upstream in 3.2.8a 2021-06-13 4 Bugzilla
29127 openjpeg2 new security issue CVE-2021-3575 David GEIGER Cauldron, 7, 8 Patch available from Fedora 2021-06-14 4 Bugzilla
29136 tor new security issues fixed upstream in 0.3.5.15 (including CVE-2021-3454[89]) Jani Välimaa 7, 8 2021-06-16 2 Bugzilla
29137 webmin new security issue fixed upstream in 1.979 Stig-Ørjan Smelror 7, 8 2021-06-16 1 Bugzilla
29140 bluez new security issues CVE-2020-26558 and CVE-2021-3588 All Packagers 7, 8 Fixed upstream in 5.58 2021-06-16 1 Bugzilla
29141 libjpeg new security issue CVE-2020-17541 David GEIGER Cauldron, 7, 8 2021-06-16 1 Bugzilla
29144 aom new security issues CVE-2021-3047[35] All Packagers Cauldron, 7, 8 2021-06-16 1 Bugzilla
Number: 154

Mageia 8

Bug number Summary (hover for RPM name) Assignee Versions affected Status comment Date created Last action (days) Quick search
19800 dracut new security issue CVE-2016-4484 Mageia tools maintainers Cauldron, 7, 8 Should be mitigated by the installer 2016-11-16 84 Bugzilla
24107 dcraw new security issues CVE-2018-1956[5-8] All Packagers Cauldron, 7, 8 No fix available as of end of 2020 2019-01-01 98
24817 resteasy new security issue CVE-2016-6346 Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 3.5.1 2019-05-14 165 Bugzilla
26629 python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 Philippe Makowski Cauldron, 7, 8 No fix available as of end of 2020 2020-05-15 171 Bugzilla
27018 grub2 new security issues CVE-2020-10713, CVE-2020-1430[89], CVE-2020-1431[01], CVE-2020-14372, CVE-[...] All Packagers 7, 8 Fixed upstream in git 2020-07-29 19 Bugzilla
27750 resteasy new security issue CVE-2020-25633 Java Stack Maintainers Cauldron, 7, 8 No fix available as of end of 2020 2020-12-05 118 Bugzilla
27757 ganglia-web security vulnerability CVE-2019-20379 Johnny A. Solbu Cauldron, 7, 8 No fix available as of end of 2020 2020-12-06 36 Bugzilla
27771 hdf5 new security issue CVE-2020-10812 Chris Denice Cauldron, 7, 8 No fix available as of end of 2020 2020-12-07 172 Bugzilla
28305 binutils new security issues CVE-2021-20197 and CVE-2021-3487 Thomas Backlund 7, 8 Upstream fixes WIP as of early February 2021 2021-02-06 18 Bugzilla
28380 thrift, golang-github-apache-thrift new security issue CVE-2020-13949 Java Stack Maintainers 7, 8 Fixed upstream in 0.14.0 2021-02-19 86 Bugzilla
28444 zstd creates compressed files with incorrect permissions (CVE-2021-2403[12]) Thierry Vignaud 7, 8 Patches available from upstream and Debian 2021-02-26 21 Bugzilla
28501 tomcat new security issues CVE-2021-25122 and CVE-2021-25329 Java Stack Maintainers 7, 8 Fails to load tomcat-users.xml 2021-03-01 1 Bugzilla
28732 chromium-browser-stable new security issues fixed in 91.0.4472.101 and CVE-2021-30535 in icu Christiaan Welvaart Cauldron, 7, 8 2021-04-05 6 Bugzilla
28800 nettle new security issue CVE-2021-20305 David GEIGER 7, 8 Fixed upstream in 3.7.2 2021-04-18 9 Bugzilla
28802 python-django new security issues CVE-2021-28658, CVE-2021-31542, CVE-2021-32052, CVE-2021-33203, CV[...] Python Stack Maintainers 8 Fixed upstream in 3.1.12 and 3.2.4 2021-04-18 12 Bugzilla
28832 ansible new security issue CVE-2021-3447 Bruno Cornec 7, 8 Fixed upstream in 2.8.20 2021-04-23 19 Bugzilla
28844 xstream new security issues CVE-2021-2134[1-9] and CVE-2021-2135[01] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 1.4.16 2021-04-27 12 Bugzilla
28882 libtpms new security issues CVE-2021-3446 and CVE-2021-3505 Thierry Vignaud Cauldron, 7, 8 Fixed upstream in 0.8.2 2021-05-06 20 Bugzilla
28885 skopeo, buildah, podman new security issue CVE-2021-20291 Joseph Wang Cauldron, 8 2021-05-06 20 Bugzilla
28903 p7zip new security issue CVE-2021-3465 David GEIGER Cauldron, 7, 8 Patch available from upstream 2021-05-11 19 Bugzilla
28923 libupnp new security issue CVE-2021-29462 David GEIGER 7, 8 Fixed upstream in 1.14.6 2021-05-14 34 Bugzilla
28925 hivex new security issue CVE-2021-3504 Thierry Vignaud 7, 8 Fixed upstream in 1.3.20 2021-05-15 9 Bugzilla
28926 rpm new security issues (including CVE-2021-3421, CVE-2021-20266, and CVE-2021-20271) Thierry Vignaud 7, 8 Fixed upstream in 4.16.1.3 2021-05-15 20 Bugzilla
28939 rxvt-unicode, mrxvt, eterm security issue via ANSI escape sequences (CVE-2021-33477) All Packagers Cauldron, 8 2021-05-18 8 Bugzilla
28947 spice new security issue CVE-2021-20201 Thierry Vignaud 7, 8 Fixed upstream in 0.14.92 2021-05-19 30 Bugzilla
28953 networkmanager new security issue CVE-2021-20297 Jani Välimaa 7, 8 Patch available from upstream 2021-05-20 19 Bugzilla
28962 opencontainers-runc new security issue CVE-2021-30465 Bruno Cornec Cauldron, 7, 8 Fixed upstream in 1.0.0-rc95 2021-05-25 17 Bugzilla
28965 nginx new security issue CVE-2021-23017 Stig-Ørjan Smelror 7, 8 Patch available from upstream 2021-05-25 4 Bugzilla
28976 dhcp new security issue CVE-2021-25217 All Packagers Cauldron, 7, 8 Fixed upstream in 4.4.2-P1 2021-05-27 12 Bugzilla
28977 gstreamer1.0-plugins-base, gstreamer1.0-plugins-bad new security issues fixed upstream in 1.18.4 (in[...] Jani Välimaa 7, 8 2021-05-28 2 Bugzilla
28985 netty new security issues CVE-2021-21295 and CVE-2021-21409 Java Stack Maintainers Cauldron, 8 Fixed upstream in 4.1.61 2021-05-28 21 Bugzilla
28991 cloud-init new security issue CVE-2021-3429 All Packagers 7, 8 Fixed upstream in 21.2 2021-05-28 16 Bugzilla
28995 busybox new security issue CVE-2021-28831 Stig-Ørjan Smelror 7, 8 Patch available from upstream 2021-05-28 20 Bugzilla
28996 php-smarty new security issues CVE-2021-26119 and CVE-2021-26120 Marc Krämer Cauldron, 7, 8 Fixed upstream in 3.1.39 2021-05-28 20 Bugzilla
28998 pjproject new security issue CVE-2021-21375 All Packagers 7, 8 Fixed upstream in 2.11 2021-05-28 16 Bugzilla
29002 python-pillow new security issues CVE-2021-2528[7-9], CVE-2021-2529[0-3], CVE-2021-2792[1-3], CVE-20[...] Python Stack Maintainers Cauldron, 7, 8 Fixed upstream in 8.2.0 2021-05-29 18 Bugzilla
29004 ruby new security issue CVE-2021-28965 Pascal Terjan Cauldron, 7, 8 Fixed upstream in 2.7.3 2021-05-29 19 Bugzilla
29005 openexr new security issues CVE-2021-347[4-9], CVE-2021-20296, CVE-2021-23169, CVE-2021-23215, CVE-2[...] All Packagers Cauldron, 7, 8 Patches available from Ubuntu and Fedora 2021-05-29 16 Bugzilla
29006 file-roller new security issue CVE-2020-36314 Olav Vitters 7, 8 Fixed upstream in 3.38.1 2021-05-29 16 Bugzilla
29010 python-pip new security issue fixed upstream in 21.1 Python Stack Maintainers 7, 8 Fixed upstream in 21.1 2021-05-29 18 Bugzilla
29012 suricata new security issue(s) fixed upstream in 6.0.2 Guillaume Rousse 8 2021-05-29 20 Bugzilla
29018 lib3mf new security issue CVE-2021-21772 David GEIGER Cauldron, 8 Fixed upstream in 2.0.1 2021-05-29 20 Bugzilla
29021 gnutls new security issues CVE-2021-20231 and CVE-2021-20232 All Packagers 7, 8 Fixed upstream in 3.7.1 2021-05-29 16 Bugzilla
29023 perl-Net-Netmask new security issue CVE-2021-29424 Thierry Vignaud 7, 8 Fixed upstream in 2.0 2021-05-29 20 Bugzilla
29025 perl-Net-CIDR-Lite new security issue fixed upstream in 0.22 Thierry Vignaud 7, 8 2021-05-29 19 Bugzilla
29027 singularity new security issue CVE-2021-29136 and CVE-2021-32635 Joseph Wang Cauldron, 8 Fixed upstream in 3.7.4 2021-05-29 12 Bugzilla
29028 nodejs new security issue CVE-2020-7774 Joseph Wang 7, 8 Fixed upstream in 10.24.1 and 14.16.1 2021-05-29 19 Bugzilla
29034 jetty new security issues CVE-2020-27223 CVE-2021-2816[3-5] Java Stack Maintainers 7, 8 Fixed upstream in 9.4.39 2021-05-30 19 Bugzilla
29035 opendmarc new security issues CVE-2019-20790, CVE-2020-12272, CVE-2020-12460 Raphael Gertz Cauldron, 8 Fixed upstream in 1.4.1 2021-05-30 18 Bugzilla
29036 redis new security issues CVE-2021-29477 and CVE-2021-29478 Stig-Ørjan Smelror 8 Fixed upstream in 6.0.14 2021-05-30 4 Bugzilla
29037 golang new security issues CVE-2021-27918 and CVE-2021-31525 All Packagers Cauldron, 7, 8 Fixed upstream in 1.15.12 2021-05-30 19 Bugzilla
29041 python-urllib3 new security issue CVE-2021-28363 Python Stack Maintainers Cauldron, 8 Fixed upstream in 1.26.4 2021-05-30 19 Bugzilla
29042 python new security issue CVE-2020-27619 Python Stack Maintainers Cauldron, 7, 8 Patch available from Fedora 2021-05-30 19 Bugzilla
29047 crmsh new security issue CVE-2021-3020 Nicolas Lécureuil Cauldron, 7, 8 2021-05-30 16 Bugzilla
29048 eclipse new security issue CVE-2020-27225 Java Stack Maintainers Cauldron, 7, 8 2021-05-30 19 Bugzilla
29052 python-django-registration new security issue CVE-2021-21416 Nicolas Lécureuil Cauldron, 7, 8 Fixed upstream in 3.1.2 2021-05-30 16 Bugzilla
29053 jhead new security issues CVE-2020-6624 CVE-2020-6625 CVE-2021-3496 Jani Välimaa 7, 8 Fixed upstream in 3.06.0.1 2021-05-30 19 Bugzilla
29054 imagemagick new security issues CVE-2021-20309 and CVE-2021-2031[1-3] Rémi Verschelde 7, 8 Fixed upstream in 7.0.11 (note: 7.0.11-14 breaks SOVERSION) 2021-05-30 17 Bugzilla
29059 freeradius new security issue bsc#1180525 All Packagers Cauldron, 7, 8 Fixed upstream in 3.0.22 2021-05-30 2 Bugzilla
29083 rust new security issues CVE-2020-3631[78], CVE-2020-36323, CVE-2021-2887[689], and CVE-2021-31162 Rémi Verschelde 8 2021-06-06 12 Bugzilla
29084 python3 new security issue CVE-2021-29921 Python Stack Maintainers 8 2021-06-06 12 Bugzilla
29092 libgrss new security issue CVE-2016-20011 Olav Vitters Cauldron, 7, 8 2021-06-08 10 Bugzilla
29125 pdfbox new security issues CVE-2021-3181[12] Java Stack Maintainers Cauldron, 7, 8 Fixed upstream in 2.0.24 2021-06-13 5 Bugzilla
29126 transfig new security issue CVE-2021-3561 David GEIGER Cauldron, 7, 8 Fixed upstream in 3.2.8a 2021-06-13 4 Bugzilla
29127 openjpeg2 new security issue CVE-2021-3575 David GEIGER Cauldron, 7, 8 Patch available from Fedora 2021-06-14 4 Bugzilla
29136 tor new security issues fixed upstream in 0.3.5.15 (including CVE-2021-3454[89]) Jani Välimaa 7, 8 2021-06-16 2 Bugzilla
29137 webmin new security issue fixed upstream in 1.979 Stig-Ørjan Smelror 7, 8 2021-06-16 1 Bugzilla
29140 bluez new security issues CVE-2020-26558 and CVE-2021-3588 All Packagers 7, 8 Fixed upstream in 5.58 2021-06-16 1 Bugzilla
29141 libjpeg new security issue CVE-2020-17541 David GEIGER Cauldron, 7, 8 2021-06-16 1 Bugzilla
29142 glibc new security issue CVE-2021-33574 Thomas Backlund Cauldron, 8 Fixed upstream in 2.34 2021-06-16 2 Bugzilla
29144 aom new security issues CVE-2021-3047[35] All Packagers Cauldron, 7, 8 2021-06-16 1 Bugzilla
Number: 71