Lector de Feeds
Measures to protect our web services.
Like many services in the software world, our services are subject to disruptive automated requests that overload our servers. You may have noticed this in the form of significant loading delays or even services becoming unavailable.
We have therefore implemented a security system over the past few days that allows us to reject requests we deem inappropriate. This system specifically requires the execution of a JavaScript program, which thwarts a significant number of bots. You may see the following screen appear briefly.
The infrastructure we’ve put in place allows us to restore a very high level of service availability. It will also enable us to make adjustments easily.
However, if you notice that certain features are affected by these measures, please let us know, as this will allow us to make more precise adjustments.
MGASA-2026-0171 - Updated libcaca packages fix security vulnerability
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-42046 Description Heap OOB write in canvas import functions caused by int overflow. (CVE-2026-42046) References
- https://bugs.mageia.org/show_bug.cgi?id=35600
- https://ubuntu.com/security/notices/USN-8318-1
- https://github.com/cacalabs/libcaca/security/advisories/GHSA-4vvg-vrqv-m56w
- https://github.com/cacalabs/libcaca/issues/86
- https://www.cve.org/CVERecord?id=CVE-2026-42046
- libcaca-0.99-0.beta19.11.1.mga9
MGASA-2026-0170 - Updated assimp packages fix security vulnerabilities
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-2750 , CVE-2025-2751 , CVE-2025-2757 , CVE-2025-3158 , CVE-2025-3548 , CVE-2025-11277 , CVE-2025-70067 Description CVE-2025-2750,- A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. The manipulation leads to out-of-bounds write. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. CVE-2025-2757, A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function AI_MD5_PARSE_STRING_IN_QUOTATION of the file code/AssetLib/MD5/MD5Parser.cpp of the component MD5 File Handler. The manipulation of the argument data leads to heap-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. CVE-2025-2757, A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function AI_MD5_PARSE_STRING_IN_QUOTATION of the file code/AssetLib/MD5/MD5Parser.cpp of the component MD5 File Handler. The manipulation of the argument data leads to heap-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. CVE-2025-3158, A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. Affected by this issue is the function Assimp::LWO::AnimResolver::UpdateAnimRangeSetup of the file code/AssetLib/LWO/LWOAnimation.cpp of the component LWO File Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. CVE-2025-3548, A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp up to 5.4.3. This issue affects the function aiString::Set in the library include/assimp/types.h of the component File Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. CVE-2025-11277, A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing a manipulation can lead to heap-based buffer overflow. The attack needs to be launched locally. The exploit has been made available to the public and could be used for attacks. CVE-2025-70067, Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy() without runtime length validation References
- https://bugs.mageia.org/show_bug.cgi?id=34439
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZYGDCFEL3GZ5PDUZFKEVVISQWAENNBTB/
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/2LQLM3OX7KPUJNJSKSVDROFQGZRJPVRF/
- https://www.cve.org/CVERecord?id=CVE-2025-2750
- https://www.cve.org/CVERecord?id=CVE-2025-2751
- https://www.cve.org/CVERecord?id=CVE-2025-2757
- https://www.cve.org/CVERecord?id=CVE-2025-3158
- https://www.cve.org/CVERecord?id=CVE-2025-3548
- https://www.cve.org/CVERecord?id=CVE-2025-11277
- https://www.cve.org/CVERecord?id=CVE-2025-70067
- assimp-5.2.5-1.mga9
MGASA-2026-0169 - Updated sdl2_sound packages fix security vulnerability
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-14369 Description Updated packages fix CVE-2025-14369 in bundled dr_flac. References SRPMS 9/core
- sdl2_sound-1.0.4-0.hg653.7.mga9
MGASA-2026-0168 - Updated tar packages fix security vulnerability
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-5704 Description A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidden file injection with fully attacker-controlled content. This bypasses pre-extraction inspection mechanisms, potentially allowing an attacker to introduce malicious files onto a system without detection. This update fixes the reported issue. References
- https://bugs.mageia.org/show_bug.cgi?id=35350
- https://bugzilla.redhat.com/show_bug.cgi?id=2455360
- https://www.openwall.com/lists/oss-security/2026/04/11/10
- https://lists.gnu.org/archive/html/bug-tar/2026-03/msg00007.html
- https://www.cve.org/CVERecord?id=CVE-2026-5704
- tar-1.35-4.mga9
MGAA-2026-0031 - Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk & java-latest-openjdk fix security vulnerabilities
Type: bugfix
Affected Mageia releases : 9
CVE: CVE-2026-22007 , CVE-2026-22008 , CVE-2026-22013 , CVE-2026-22016 , CVE-2026-22018 , CVE-2026-22021 , CVE-2026-23865 , CVE-2026-34268 , CVE-2026-34282 Description Enhance crypto algorithm support. (CVE-2026-22007) Improved Arena allocations. (CVE-2026-22008) Improve Kerberos credentialing. (CVE-2026-22013) Enhance Path Factories Redux. (CVE-2026-22016) Enhance Zip file reading. (CVE-2026-22018) Enhance certificate chain validation. (CVE-2026-22021) Updating FreeType 2.14.1 . (CVE-2026-23865) Enhance key generation. (CVE-2026-34268) Enhance TLS connection handling. (CVE-2026-34282) References
- https://bugs.mageia.org/show_bug.cgi?id=35402
- https://access.redhat.com/errata/RHSA-2026:9682
- https://access.redhat.com/errata/RHSA-2026:9254
- https://access.redhat.com/errata/RHSA-2026:9686
- https://access.redhat.com/errata/RHSA-2026:9690
- https://access.redhat.com/errata/RHSA-2026:9693
- https://www.oracle.com/security-alerts/cpuapr2026.html#AppendixJAVA
- https://www.cve.org/CVERecord?id=CVE-2026-22007
- https://www.cve.org/CVERecord?id=CVE-2026-22008
- https://www.cve.org/CVERecord?id=CVE-2026-22013
- https://www.cve.org/CVERecord?id=CVE-2026-22016
- https://www.cve.org/CVERecord?id=CVE-2026-22018
- https://www.cve.org/CVERecord?id=CVE-2026-22021
- https://www.cve.org/CVERecord?id=CVE-2026-23865
- https://www.cve.org/CVERecord?id=CVE-2026-34268
- https://www.cve.org/CVERecord?id=CVE-2026-34282
- java-1.8.0-openjdk-1.8.0.492.b09-1.mga9
- java-11-openjdk-11.0.31.0.11-1.mga9
- java-17-openjdk-17.0.19.0.10-1.mga9
- java-latest-openjdk-25.0.3.0.9-1.rolling.1.mga9
IsoDumper Writing ISO images on USB sticks
Interface on Mageia 9
← Older revision Revision as of 16:37, 1 June 2026 Line 52: Line 52: Results of the checks are reported in the logg. Results of the checks are reported in the logg. −== Interface on Mageia 9 ==+== Interface on Mageia 9 and later == The interface have been redesigned for a clear workflow, from top to bottom: The interface have been redesigned for a clear workflow, from top to bottom: # Select the device in the top left dropdown. If you plug in or out devices, press the button at right to update the list. # Select the device in the top left dropdown. If you plug in or out devices, press the button at right to update the list. Papoteur



