Lector de Feeds

Publication date: 01 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-52555 Description Security regression (CVE-2025-52555) that would have allowed an user to read, write and execute to any directory owned by root as long as they chmod 777 it. References

• https://bugs.mageia.org/show_bug.cgi?id=34400
• https://www.openwall.com/lists/oss-security/2025/06/26/1
• https://github.com/ceph/ceph/commit/64f0d786a078a79843c1c1da9cae5e2e603371af
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52555

SRPMS 9/core

• ceph-18.2.7-2.mga9

Publication date: 01 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-47906 , CVE-2025-47907 Description LookPath may return unexpected paths, CVE-2025-47906. incorrect results returned from Rows.Scan, CVE-2025-47907. These packages fix the issues for the compiler only; applications using the functions still need to be rebuilt. References

• https://bugs.mageia.org/show_bug.cgi?id=34584
• https://www.openwall.com/lists/oss-security/2025/08/06/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47906
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47907

SRPMS 9/core

• golang-1.24.6-1.mga9

Publication date: 01 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-8058 Description Double-free after allocation failure in regcomp. (CVE-2025-8058) References

• https://bugs.mageia.org/show_bug.cgi?id=34580
• https://www.openwall.com/lists/oss-security/2025/07/23/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8058

SRPMS 9/core

• glibc-2.36-57.mga9

Publication date: 01 Sep 2025
Type: bugfix
Affected Mageia releases : 9
Description Thia update adds support to LZ4 and other compression formats. References

• https://bugs.mageia.org/show_bug.cgi?id=34583

SRPMS 9/core

• rocksdb-7.7.8-1.2.mga9