Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Undefined
Fix Version/s: None
Affects Version/s: rhel-8.8.0, CentOS Stream 8
Component/s: LibRaw
Labels:
None

Regression:
None
Severity:
None

Pool Team:

rhel-sst-display-productivity
Sub-System Group:

ssg_display

Story Points:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Test Coverage:
None

Architecture:

All

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

This CVE was reported against LibRaw-epel which just provides the missing development subpackages from LibRaw that are not shipped on some architectures:

https://bugzilla.redhat.com/show_bug.cgi?id=2235275

Debian's CVE page has more useful details - https://security-tracker.debian.org/tracker/CVE-2020-22628

This is basically fixed in 0.20-RC2 so if EL8 is not going to get rebased the fix needs to be cherry picked

Assignee:: Debarshi Ray

Reporter:: Michel Lind

Developer:: Debarshi Ray

QA Contact:: Tomas Pelka

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2023/10/11 2:28 AM

Updated:: 2024/01/31 1:17 PM

Resolved:: 2024/01/18 10:04 AM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates