This bug was fixed in the package cinder - 2:16.4.2-0ubuntu2.9
---------------
cinder (2:16.4.2-0ubuntu2.9) focal-security; urgency=medium
* SECURITY REGRESSION: regression due to missing privset handling
(LP: #2085851)
- debian/patches/CVE-2024-32498.patch: switch to final upstream patch
which differs from the patch provided during embargo.
- debian/patches/fix_CVE-2022-47951_test.patch: fix test after updating
CVE-2024-32498 patch.
-- Marc Deslauriers <[email protected]> Mon, 04 Nov 2024
08:29:59 -0500
** Changed in: cinder (Ubuntu Focal)
Status: In Progress => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-47951
** Changed in: cinder (Ubuntu Noble)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2085851
Title:
Jammy package 2:20.3.1-0ubuntu1.4 is missing the upstream privsep
pieces
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/2085851/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
