Date: Sun, 01 Mar 2020 11:07:35 +0100 From: Florian Weimer <fweimer@...hat.com> To: "Alexander E. Patrakov" <patrakov@...il.com> Cc: oss-security@...ts.openwall.com Subject: Re: LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) * Alexander E. Patrakov: > Just in case, I would like to complain here that my Fedora 31 systems > have not received an update. > > There is indeed something in testing, but it is (mistakenly?) marked > as a bugfix release and not as a security update: > > https://bodhi.fedoraproject.org/updates/?packages=opensmtpd I have edited the update and flagged it as security. However, without feedback from community testing (karma), this update cannot be pushed at this time. The package also failed to build on Fedora 32 and 33/rawhide due to C conformance issues, so there are no updates available there. Thanks, Florian
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.