1217270 – Please port CVE-2023-33204 fix to Leap 15.4

Bug 1217270 - Please port CVE-2023-33204 fix to Leap 15.4

Summary: Please port CVE-2023-33204 fix to Leap 15.4

Status:	RESOLVED DUPLICATE of bug 1211507

Alias:	None

Product:	openSUSE Distribution
Classification:	openSUSE
Component:	Security (show other bugs)
Version:	Leap 15.4
Hardware:	Other openSUSE Leap 15.4

Priority:	P5 - None Severity: Normal (vote)
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	E-mail List

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2023-11-16 20:10 UTC by Simon Logan
Modified:	2023-11-17 08:38 UTC (History)
CC List:	0 users

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Simon Logan 2023-11-16 20:10:57 UTC

User-Agent:       Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Build Identifier: 

The existing fix for CVE-2023-33204 is in Tumbleweed. See https://bugzilla.suse.com/show_bug.cgi?id=1211507

David Anes asked me to raise a separate bug to have the fix ported to Leap 15.4 (I need it for x86_64).

Reproducible: Didn't try

Comment 1 Marcus Meissner 2023-11-17 08:17:02 UTC

dup of bug 1211507

there is no seperate delivery for Leap 15.4 and we have decided not to fix in on SLE15 as its a 32bit only problem.

is there specific need to have it fixed on leap even tough it is not affecting it?

*** This bug has been marked as a duplicate of bug 1211507 ***

Comment 2 Simon Logan 2023-11-17 08:38:45 UTC

Hi Marcus, no need for a 32 bit fix. I hadn't noticed it was 32 bit only, sorry for the noise.

Simon