Lector de Feeds
MGASA-2025-0203 - Updated php packages fix security vulnerabilities
Publication date: 05 Jul 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-1735 , CVE-2025-6491 , CVE-2025-1220 Description PGSQL: Fixed GHSA-hrwm-9436-5mv3 (pgsql extension does not check for errors during escaping). (CVE-2025-1735) SOAP: Fixed GHSA-453j-q27h-5p8x (NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix). (CVE-2025-6491) Standard: Fixed GHSA-3cr5-j632-f35r (Null byte termination in hostnames). (CVE-2025-1220) References
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-1735 , CVE-2025-6491 , CVE-2025-1220 Description PGSQL: Fixed GHSA-hrwm-9436-5mv3 (pgsql extension does not check for errors during escaping). (CVE-2025-1735) SOAP: Fixed GHSA-453j-q27h-5p8x (NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix). (CVE-2025-6491) Standard: Fixed GHSA-3cr5-j632-f35r (Null byte termination in hostnames). (CVE-2025-1220) References
- https://bugs.mageia.org/show_bug.cgi?id=34418
- https://www.php.net/ChangeLog-8.php#8.2.29
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1735
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6491
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1220
- php-8.2.29-1.mga9
Categorías: Actualizaciones de Seguridad
MGASA-2025-0202 - Updated catdoc packages fix security vulnerabilities
Publication date: 05 Jul 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-48877 , CVE-2024-52035 , CVE-2024-54028 Description A memory corruption vulnerability exists in the Shared String Table Record Parser implementation in the xls2csv utility version 0.95. (CVE-2024-48877) An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. (CVE-2024-52035) An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. (CVE-2024-54028) References
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-48877 , CVE-2024-52035 , CVE-2024-54028 Description A memory corruption vulnerability exists in the Shared String Table Record Parser implementation in the xls2csv utility version 0.95. (CVE-2024-48877) An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. (CVE-2024-52035) An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. (CVE-2024-54028) References
- https://bugs.mageia.org/show_bug.cgi?id=34411
- https://lists.debian.org/debian-security-announce/2025/msg00117.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-48877
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52035
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-54028
- catdoc-0.95-5.1.mga9
Categorías: Actualizaciones de Seguridad
Mageia 9 Errata
Desktops: Added chapter Plasma, and the fix for sensor widgets after upgrade from mga8
← Older revision Revision as of 21:15, 5 July 2025 Line 231: Line 231: {{bug|32350}} - '''Applet visibility''' - The display of applet icons in the tray (update applet, network, NextCloud...) depends on {{prog|gnome-shell-extension-appindicator}} which is installed but not enabled by default. {{bug|32350}} - '''Applet visibility''' - The display of applet icons in the tray (update applet, network, NextCloud...) depends on {{prog|gnome-shell-extension-appindicator}} which is installed but not enabled by default. To enable it, either '''1.)''' use the GUI tool GNOME Extensions to enable "Appindicator and KStatusNotifierItem Support" or '''2.)''' run as a user in a terminal: {{cmd|gnome-extensions enable appindicatorsupport@rgcjonas.gmail.com}} To enable it, either '''1.)''' use the GUI tool GNOME Extensions to enable "Appindicator and KStatusNotifierItem Support" or '''2.)''' run as a user in a terminal: {{cmd|gnome-extensions enable appindicatorsupport@rgcjonas.gmail.com}} + +<br> + +=== Plasma === + +==== After upgrade from Mageia 8 ==== +'''Plasma widgets that show sensor data do not work.''' Explanation: Many old widgets were based on ksysguard, which got deprecated upstream. '''Fix:''' If you do not have the plasma-systemmonitor package installed, please install it. You probably also need to remove all your widgets and readd them as current widgets. <br> <br> Morgano
Categorías: Wiki de Mageia
