Lector de Feeds

MGASA-2025-0179 - Updated php-adodb packages fix security vulnerability

Mageia Security - 8 Junio, 2025 - 07:22
Publication date: 08 Jun 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-46337 Description ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and calls pg_insert_id() with user-supplied data. This issue has been patched in version 5.22.9 - CVE-2025-46337. References SRPMS 9/core
  • php-adodb-5.22.9-1.mga9

MGASA-2025-0178 - Updated systemd packages fix security vulnerability

Mageia Security - 8 Junio, 2025 - 07:22
Publication date: 08 Jun 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4598 Description Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump. (CVE-2025-4598) References SRPMS 9/core
  • systemd-253.33-1.mga9

MGASA-2025-0177 - Updated tomcat packages fix security vulnerability

Mageia Security - 8 Junio, 2025 - 07:22
Publication date: 08 Jun 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-46701 Description Security constraint bypass for CGI scripts. (CVE-2025-46701) References SRPMS 9/core
  • tomcat-9.0.105-1.mga9
Feed