Lector de Feeds

Mageia 10 Release Notes

Wiki Mageia - 5 Junio, 2026 - 20:16

‎With removal on upgrade: add bookworm

← Older revision Revision as of 19:16, 5 June 2026 Line 720: Line 720: This category contains the following packages, alphabetically: This category contains the following packages, alphabetically: −*+* bookworm   Katnatek

Categorías: Wiki de Mageia

MGASA-2026-0175 - Updated cockpit packages fix security vulnerabilities

Mageia Security - 5 Junio, 2026 - 18:37

Publication date: 05 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-4802 , CVE-2026-4631 , CVE-2026-4800 Description CVE-2026-4631, Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH options or shell commands, achieving code execution on the Cockpit host without valid credentials. The injection occurs during the authentication flow before any credential verification takes place, meaning no login is required to exploit the vulnerability. CVE-2026-4800, lodash vulnerable to Code Injection via `_.template` imports key names CVE-2026-4802, A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the system logs user interface (UI). An attacker can inject shell metacharacters and command substitutions into these parameters, leading to the execution of arbitrary shell commands on the affected system. This could result in a complete system compromise. References

SRPMS 9/core

cockpit-356.2-1.mga9

Categorías: Actualizaciones de Seguridad

MGASA-2026-0174 - Updated kernel, kmod-virtualbox & kmod-xtables-addons packages fix security vulnerabilities

Mageia Security - 5 Junio, 2026 - 18:37

Publication date: 05 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-43491 , CVE-2026-43492 , CVE-2026-43493 , CVE-2026-43495 , CVE-2026-43496 , CVE-2026-43497 , CVE-2026-43499 , CVE-2026-43501 , CVE-2026-43502 , CVE-2026-43503 , CVE-2026-46300 , CVE-2026-46333 Description Upstream kernel version 6.6.141 fixes vulnerabilities. The kmod-virtualbox & kmod-xtables-addons packages have been updated to work with this new kernel. References

SRPMS 9/core

kernel-6.6.141-1.mga9
kmod-virtualbox-7.1.18-20.mga9
kmod-xtables-addons-3.24-92.mga9

Categorías: Actualizaciones de Seguridad

MGASA-2026-0173 - Updated xmlrpc-c packages fix security vulnerabilities

Mageia Security - 5 Junio, 2026 - 18:37

Publication date: 05 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2022-25236 , CVE-2022-25313 , CVE-2022-25314 , CVE-2022-25315 , CVE-2022-40674 , CVE-2022-43680 Description This update fixes the vulnerabilities by no longer building with the vulnerable bundled libexpat version. References

SRPMS 9/core

xmlrpc-c-1.51.08-1.1.mga9

Categorías: Actualizaciones de Seguridad

MGAA-2026-0033 - Updated drakxtools packages fix bug

Mageia Security - 5 Junio, 2026 - 18:37

Publication date: 05 Jun 2026
Type: bugfix
Affected Mageia releases : 9
Description Closing windows of applications launched from Mageia Control Center (aka MCC) should return to the main MCC window; currently that does not happen. This update fixes the reported issue. References

https://bugs.mageia.org/show_bug.cgi?id=20387

SRPMS 9/core

drakxtools-18.66.1-1.mga9

Categorías: Actualizaciones de Seguridad

Medidas para proteger nuestros servicios web

Blog de Mageia-ES - 5 Junio, 2026 - 11:27

Como muchos servicios en el mundo del software, nuestros servicios están sujetos a solicitudes automatizadas disruptivas que sobrecargan nuestros servidores. Es posible que hayas notado esto en forma de importantes retrasos en la carga o incluso que los servicios dejen de estar disponibles.

Por ello, hemos implementado un sistema de seguridad durante los últimos días que nos permite rechazar las solicitudes que consideramos inapropiadas. Este sistema requiere específicamente la ejecución de un programa JavaScript, lo que frustra una cantidad significativa de bots. Es posible que vea aparecer brevemente la siguiente pantalla.

La infraestructura que hemos implementado nos permite restaurar un nivel muy alto de disponibilidad del servicio. También nos permitirá realizar ajustes fácilmente.

Sin embargo, si nota que ciertas características se ven afectadas por estas medidas, háganoslo saber, ya que esto nos permitirá realizar ajustes más precisos.

Categorías: Blogs Oficiales

Mageia 10 Veröffentlichungshinweise-de

Wiki Mageia - 5 Junio, 2026 - 07:26

← Older revision Revision as of 06:26, 5 June 2026 Line 366: Line 366: === Internetanwendungen === === Internetanwendungen === −* Der Chromium-Browser wurde entfernt, wegen zu viel Arbeit zur Pflege  Falls Sie diesen benötigen, installieren Sie diesen als [[Flatpak-de|Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, oder Chrome Flatpak. Verwenden Sie alternativ die von Google bereitgestellte RPM von Chrome.+* Der Chromium-Browser wurde entfernt, wegen zu viel Arbeit zur Pflege  Falls Sie diesen benötigen, installieren Sie diesen als [[Flatpak-de|Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, oder Chrome Flatpak. Verwenden Sie alternativ die von [[Google_Chrome-de|Google bereitgestellte RPM von Chrome]]. * Firefox wurde auf 140 ESR aktualisiert** * Firefox wurde auf 140 ESR aktualisiert** * Wir haben Browser für das Gemini Protokoll hinzugefügt: Lagrange (SDL), Kristall (Qt), Offpunk (CLI) * Wir haben Browser für das Gemini Protokoll hinzugefügt: Lagrange (SDL), Kristall (Qt), Offpunk (CLI) Psyca

Categorías: Wiki de Mageia

Kernel-Arten-de

Wiki Mageia - 5 Junio, 2026 - 07:26

← Older revision Revision as of 06:26, 5 June 2026 Line 71: Line 71: '''Für Mageia 9''' '''Für Mageia 9''' −Kernel 6.18.4 wird seit Januar 2026 in den core backport Repositorien (6.18.26 in den backport Repositorien seit Mai 2026) für die x86 Architektur, für Desktop und Server, sowie als gleiche Arten für i586 und desktop586, angeboten. +Kernel 6.18 wird seit Januar 2026 in den core backport Repositorien (6.18.33 seit Juni 2026) für die x86 Architektur, für Desktop und Server, sowie als gleiche Arten für i586 und desktop586, angeboten. Für aarch64 und armv7hl bieten wir aktuell nur die Pakete für den Quellcode und die Dokumentation. Für aarch64 und armv7hl bieten wir aktuell nur die Pakete für den Quellcode und die Dokumentation. Sie finden auch Kernel 6.12.60 für alle Architekturen für den Desktop im core backport Repository '' - Beachten Sie, dass dieser sicherheitstechnisch alt ist, aber Sie möchten diesen gegebenenfalls zum ''testen'' verwenden, falls 6.18 nicht mit Ihrem System kompatibel ist.'' Sie finden auch Kernel 6.12.60 für alle Architekturen für den Desktop im core backport Repository '' - Beachten Sie, dass dieser sicherheitstechnisch alt ist, aber Sie möchten diesen gegebenenfalls zum ''testen'' verwenden, falls 6.18 nicht mit Ihrem System kompatibel ist.'' Psyca

Categorías: Wiki de Mageia

Mageia 10 Release Notes

Wiki Mageia - 5 Junio, 2026 - 07:22

fix broken link

← Older revision Revision as of 06:22, 5 June 2026 Line 421: Line 421: === Internet apps === === Internet apps === −* Chromium-browser have been dropped due to too much maintenance work.  If you need it, install it as [[Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, or Chrome Flatpak. Or [https://wiki.mageia.org/en/Installing_Google_Chrome_in_Mageia|use the Chrome RPM from Google]. +* Chromium-browser have been dropped due to too much maintenance work.  If you need it, install it as [[Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, or Chrome Flatpak. Or [[Installing_Google_Chrome_in_Mageia|use the Chrome RPM from Google]]. * Firefox has been updated to 140 ESR** * Firefox has been updated to 140 ESR** * We added browsers for Gemini protocol: Lagrange (SDL), Kristall (Qt), Offpunk (CLI). * We added browsers for Gemini protocol: Lagrange (SDL), Kristall (Qt), Offpunk (CLI). Psyca

Categorías: Wiki de Mageia

Kernel flavours

Wiki Mageia - 4 Junio, 2026 - 22:10

‎Backport kernels: 6.18.33 now.

← Older revision Revision as of 21:10, 4 June 2026 Line 79: Line 79: '''In Mageia 9''' '''In Mageia 9''' −Kernel 6.18.4 is provided since January 2026 in the core backport repository (6.18.26 in backport_testing May 2026) for x86_64 in desktop and server flavour, and for i586 the same plus desktop586. +Kernel 6.18 is provided since January 2026 in the core backport repository (at 6.18.33 in june) for x86_64 in desktop and server flavour, and for i586 the same plus desktop586. For aarch64 and armv7hl we currently only provide source and doc packages. For aarch64 and armv7hl we currently only provide source and doc packages. You also find kernel 6.12.60 for all architectures in desktop flavour in core backort testing repository ''- note that it is old security wise now but you may like to test it if 6.18 is not compatible for your use.'' You also find kernel 6.12.60 for all architectures in desktop flavour in core backort testing repository ''- note that it is old security wise now but you may like to test it if 6.18 is not compatible for your use.'' Morgano

Categorías: Wiki de Mageia

Mageia 10 Release Notes

Wiki Mageia - 4 Junio, 2026 - 15:01

‎Internet apps

← Older revision Revision as of 14:01, 4 June 2026 Line 421: Line 421: === Internet apps === === Internet apps === −* Chromium-browser have been dropped due to too much maintenance work.  If you need it, install it as [[Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, or Chrome Flatpak. Or use the Chrome RPM from Google. +* Chromium-browser have been dropped due to too much maintenance work.  If you need it, install it as [[Flatpak]]; install app/org.chromium.Chromium/x86_64/stable, or Chrome Flatpak. Or [https://wiki.mageia.org/en/Installing_Google_Chrome_in_Mageia|use the Chrome RPM from Google]. * Firefox has been updated to 140 ESR** * Firefox has been updated to 140 ESR** * We added browsers for Gemini protocol: Lagrange (SDL), Kristall (Qt), Offpunk (CLI). * We added browsers for Gemini protocol: Lagrange (SDL), Kristall (Qt), Offpunk (CLI). Baud

Categorías: Wiki de Mageia

MGASA-2026-0172 - Updated lxc packages fix security vulnerability

Mageia Security - 4 Junio, 2026 - 06:19

Publication date: 04 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-39402 Description CVE-2026-39402, lxc lxc-user-nic insufficient ownership validation allows cross-tenant OVS port deletion References

SRPMS 9/core

lxc-5.0.3-1.1.mga9

Categorías: Actualizaciones de Seguridad

MGAA-2026-0032 - Updated ceph packages fix bug

Mageia Security - 4 Junio, 2026 - 06:19

Publication date: 04 Jun 2026
Type: bugfix
Affected Mageia releases : 9
Description Updated ceph packages matching upstream bug fix release for the "Relief" branch References

SRPMS 9/core

ceph-18.2.8-1.mga9

Categorías: Actualizaciones de Seguridad

Measures to protect our web services.

Blog de Mageia (English) - 2 Junio, 2026 - 16:49

Like many services in the software world, our services are subject to disruptive automated requests that overload our servers. You may have noticed this in the form of significant loading delays or even services becoming unavailable.

We have therefore implemented a security system over the past few days that allows us to reject requests we deem inappropriate. This system specifically requires the execution of a JavaScript program, which thwarts a significant number of bots. You may see the following screen appear briefly.

The infrastructure we’ve put in place allows us to restore a very high level of service availability. It will also enable us to make adjustments easily.

However, if you notice that certain features are affected by these measures, please let us know, as this will allow us to make more precise adjustments.

Categorías: Blogs Oficiales