Lector de Feeds

‎Various software: update aegisub

← Older revision Revision as of 17:53, 27 May 2025 Line 357: Line 357:  {{Bug|32806}} - '''rtorrent''' crash (and gets automatically restarted). Upstream. {{Bug|32806}} - '''rtorrent''' crash (and gets automatically restarted). Upstream.    −{{Bug|33330}} - '''aegisub crashes at start in wayland session. - WORKAROUND:''' Start it from command line this way: {{cmd|<nowiki>env GDK_BACKEND=x11 aegisub</nowiki>}}. +'''FIXED BY [https://advisories.mageia.org/MGAA-2025-0055.html UPDATE]''' {{Bug|33330}} - '''aegisub''' crashes at start in wayland session.     '''FIXED BY UPDATE''' {{Bug|33366}} -  After first run '''neochat''' in light desktops can't start a new session once you quit from application icon in taskbar. It is fixed in the update, but if you already bite by this you note still can't start a new session, I hope you have your account data because you need to remove {{folder|~/.local/share/KDE/neochat}}, {{file|~/.config/neochatrc}}, {{file|~/.config/KDE/neochat.conf}}, {{folder|~/.cache/KDE/neochat}}. '''FIXED BY UPDATE''' {{Bug|33366}} -  After first run '''neochat''' in light desktops can't start a new session once you quit from application icon in taskbar. It is fixed in the update, but if you already bite by this you note still can't start a new session, I hope you have your account data because you need to remove {{folder|~/.local/share/KDE/neochat}}, {{file|~/.config/neochatrc}}, {{file|~/.config/KDE/neochat.conf}}, {{folder|~/.cache/KDE/neochat}}. Katnatek

Publication date: 26 May 2025
Type: bugfix
Affected Mageia releases : 9
Description aegisub crashes when run in a Wayland session. This update fixes the reported issue. References

• https://bugs.mageia.org/show_bug.cgi?id=33330
• https://github.com/TypesettingTools/Aegisub/issues/233

SRPMS 9/core

• aegisub-3.4.2-1.mga9

Publication date: 24 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4802 Description An untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library versions 2.27 to 2.38 allows attacker-controlled loading of dynamically shared libraries in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo). (CVE-2025-4802) References

• https://bugs.mageia.org/show_bug.cgi?id=34286
• https://www.openwall.com/lists/oss-security/2025/05/16/7
• https://www.openwall.com/lists/oss-security/2025/05/17/2
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4802

SRPMS 9/core

• glibc-2.36-56.mga9

Publication date: 24 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-47268 Description ping in iputils through 20240905 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication. (CVE-2025-47268 References

• https://bugs.mageia.org/show_bug.cgi?id=34297
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LHFUD3TRXO7AHOVSFWLKP2MKB77PEQBK/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47268

SRPMS 9/core

• iputils-20221126-1.1.mga9

Publication date: 24 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4638 Description Improper Pointer Arithmetic in pcl. (CVE-2025-4638) References

• https://bugs.mageia.org/show_bug.cgi?id=34301
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OPTP7IW7Z54KXHWHH6JSVJ75RDCVQ4Z7/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4638

SRPMS 9/core

• zsync-0.6.2-11.1.mga9

Publication date: 24 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-23165 , CVE-2025-23166 , CVE-2025-23167 Description Corrupted pointer in node::fs::ReadFileUtf8(const FunctionCallbackInfo& args) when args[0] is a string. (CVE-2025-23165) Improper error handling in async cryptographic operations crashes process. (CVE-2025-23166) Improper HTTP header block termination in llhttp. (CVE-2025-23167) References

• https://bugs.mageia.org/show_bug.cgi?id=34278
• https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23165
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23166
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23167

SRPMS 9/core

• nodejs-22.16.0-1.mga9