Lector de Feeds

Publication date: 11 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-9086 Description curl is susceptible to an out-of-bounds read in the cookie handler that could either cause a crash or potentially make allow a clear-text site to override the contents of a secure cookie. This release also fixes a rare memory leak in HTTP trailers. References

• https://bugs.mageia.org/show_bug.cgi?id=34623
• https://curl.se/docs/CVE-2025-9086.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9086

SRPMS 9/core

• curl-7.88.1-4.8.mga9

‎Cancel the build: Finding build ID

← Older revision Revision as of 05:57, 11 September 2025 Line 13: Line 13:     sudo -u schedbot cancel_build 20231231211004.pterjan.duvel.1487312    sudo -u schedbot cancel_build 20231231211004.pterjan.duvel.1487312    −providing the build ID you just found.+providing the build ID you just found. If ''Status'' isn't available yet, take a look through the process list on duvel for the appropriate remote ''iurt'' invocation and interpolate the build ID from the arguments.     [[Category:Sysadmin]] [[Category:Sysadmin]] Danf

Publication date: 09 Sep 2025
Type: bugfix
Affected Mageia releases : 9
Description Fixed a bugregression introduced in 580.65.06 that could cause Vulkan applications to hang on Wayland. Added support for NVIDIA Smooth Motion on GeForce RTX 40 Series GPUs. Fixed a bug that caused /sys/class/drm/.../enabled to always report "disabled" for NVIDIA GPU connectors. References

• https://bugs.mageia.org/show_bug.cgi?id=34610
• https://www.nvidia.com/en-us/drivers/details/253003/

SRPMS 9/nonfree

• nvidia-current-580.82.07-1.mga9.nonfree

Publication date: 08 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-8067 Description Out-of-bounds read in udisks daemon. (CVE-2025-8067) References

• https://bugs.mageia.org/show_bug.cgi?id=34602
• https://www.openwall.com/lists/oss-security/2025/08/28/1
• https://www.openwall.com/lists/oss-security/2025/08/28/4
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8067

SRPMS 9/core

• udisks2-2.10.1-1.2.mga9

Publication date: 08 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-8713 , CVE-2025-8714 , CVE-2025-8715 Description PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table. (CVE-2025-8713) PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client. (CVE-2025-8714) PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server. (CVE-2025-8715) References

• https://bugs.mageia.org/show_bug.cgi?id=34608
• https://www.postgresql.org/about/news/postgresql-176-1610-1514-1419-1322-and-18-beta-3-released-3118/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8713
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8714
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8715

SRPMS 9/core

• postgresql15-15.14-1.mga9
• postgresql13-13.22-1.mga9

Publication date: 08 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-57833 Description Potential SQL injection in FilteredRelation column aliases. (CVE-2025-57833) References

• https://bugs.mageia.org/show_bug.cgi?id=34612
• https://www.openwall.com/lists/oss-security/2025/09/03/3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

SRPMS 9/core

• python-django-4.1.13-1.6.mga9