Actualizaciones de Seguridad

Publication date: 23 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4096 , CVE-2025-4050 , CVE-2025-4051 , CVE-2025-4052 , CVE-2025-4372 , CVE-2025-4664 , CVE-2025-4609 Description Heap buffer overflow in HTML. (CVE-2025-4096) Out of bounds memory access in DevTools. (CVE-2025-4050) Insufficient data validation in DevTools. (CVE-2025-4051) Inappropriate implementation in DevTools. (CVE-2025-4052) Use after free in WebAudio. (CVE-2025-4372) Insufficient policy enforcement in Loader. (CVE-2025-4664) Incorrect handle provided in unspecified circumstances in Mojo. (CVE-2025-4609) References

• https://bugs.mageia.org/show_bug.cgi?id=34235
• https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_29.html
• https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop.html
• https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4096
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4050
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4051
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4052
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4372
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4664
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4609

SRPMS 9/tainted

• chromium-browser-stable-136.0.7103.113-1.mga9.tainted

Publication date: 23 May 2025
Type: bugfix
Affected Mageia releases : 9
Description A missing runtime requirement meant that elisa couldn't play web radio stations. This update fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=34281

SRPMS 9/core

• elisa-23.04.3-1.1.mga9

Publication date: 23 May 2025
Type: bugfix
Affected Mageia releases : 9
Description In SkinDeep, GL_LINES causes GL_INVALID_OPERATION with radeonsi and llvmpipe radv: UB and artifacts when copying a `COMBINED_IMAGE_SAMPLER` with an immutable sampler RADV: Dynamic state multiple viewport corruption [drm:amdgpu_uvd_cs_pass2 [amdgpu]] *ERROR* )Handle 0x48780001 already in use! glGetInternalformativ returns incorrect information for GL_STENCIL_INDEX8 RadeonSI: Psychonauts rendering regression since !29895 [r600g] Rejected CS when using dolphin’s GPU texture decoder radeonsi: Assertion `src_bit_size == bit_size’ failed. when running without MESA_GLSL_DISABLE_IO_OPT=1 radeonsi vdpau + Packed YUY2 = assert Indiana Jones and The Great Circle, Graphical corruption on 9070 XT. glPushAttrib/glPopAttrib broken with glColorMaterial and ligthing radv: Flickering in Kingdom Come: Deliverance II RADV regression causes severe glitches in Hunt Showdown 1896 on Polaris Z-Fighting in Tomb Raider IV - VI Remastered Linux RADV:RX 9070:Mesa-25.0.5 GTA 5 Enhanced GPU HANG [anv] VK_ERROR_DEVICE_LOST on Linux 6.13.8 while playing Dota 2 on Intel Graphics References

• https://bugs.mageia.org/show_bug.cgi?id=34282
• https://docs.mesa3d.org/relnotes/25.0.6.html

SRPMS 9/core

• mesa-25.0.6-2.mga9

9/tainted

• mesa-25.0.6-2.mga9.tainted

Publication date: 23 May 2025
Type: bugfix
Affected Mageia releases : 9
Description The developer has fixed many bugs since our current release. This update provides the latest commit. References

• https://bugs.mageia.org/show_bug.cgi?id=34289
• https://github.com/EionRobb/purple-discord/

SRPMS 9/core

• purple-discord-0-1.20250517git99a5f5f.mga9

Publication date: 16 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-47203 Description dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used. References

• https://bugs.mageia.org/show_bug.cgi?id=34264
• https://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2025q2/002385.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47203

SRPMS 9/core

• dropbear-2022.83-2.2.mga9

Publication date: 16 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32728 Description In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. (CVE-2025-32728) References

• https://bugs.mageia.org/show_bug.cgi?id=34224
• https://ubuntu.com/security/notices/USN-7457-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32728

SRPMS 9/core

• openssh-9.3p1-2.5.mga9

Publication date: 14 May 2025
Type: bugfix
Affected Mageia releases : 9
Description The current package has reached EOL. This update introduces a supported version. References

• https://bugs.mageia.org/show_bug.cgi?id=34254

SRPMS 9/core

• lutris-0.5.18-1.mga9

Publication date: 14 May 2025
Type: bugfix
Affected Mageia releases : 9
Description The current version has some bugs: - Missing support for deb files that contain files with zstd compression. - Missing a Require: useful to allow regular users to use the application. - Missing a Require: used by the application for rpm to deb conversion. Note the rpm to deb conversion still doesn't work out of the box, and in some cases some deb to rpm conversions can fail. We have published the wiki page https://wiki.mageia.org/en/Alien with information about how to proceed in these cases. References

• https://bugs.mageia.org/show_bug.cgi?id=28607

SRPMS 9/core

• alien-8.95.8-1.1.mga9

Publication date: 14 May 2025
Type: bugfix
Affected Mageia releases : 9
Description The current version does not support deb files containing files with zstd compression. This update fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=34270

SRPMS 9/core

• dpkg-1.22.11-1.mga9

Publication date: 14 May 2025
Type: bugfix
Affected Mageia releases : 9
Description The current version has reached EOL; the newer upstream version fixes bugs and provides improvements. References

• https://bugs.mageia.org/show_bug.cgi?id=34193
• https://www.virtualbox.org/wiki/Download_Old_Builds
• https://www.virtualbox.org/wiki/Changelog-7.1#v08

SRPMS 9/core

• virtualbox-7.1.8-1.mga9
• kmod-virtualbox-7.1.8-1.mga9

Publication date: 13 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-21587 , CVE-2025-30691 , CVE-2025-30698 Description Better TLS connection support. (CVE-2025-21587) Improve compiler transformations. (CVE-2025-30691) Enhance Buffered Image handling. (CVE-2025-30698) The updated timezone data are needed by the new Java packages. References

• https://bugs.mageia.org/show_bug.cgi?id=34206
• https://access.redhat.com/errata/RHSA-2025:3845
• https://access.redhat.com/errata/RHSA-2025:3850
• https://access.redhat.com/errata/RHSA-2025:3853
• https://access.redhat.com/errata/RHSA-2025:3856
• https://www.oracle.com/security-alerts/cpuapr2025.html#AppendixJAVA
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-21587
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30691
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30698

SRPMS 9/core

• timezone-2025a-1.mga9
• java-1.8.0-openjdk-1.8.0.452.b09-1.mga9
• java-11-openjdk-11.0.27.0.6-1.mga9
• java-17-openjdk-17.0.15.0.6-1.mga9
• java-latest-openjdk-24.0.1.0.9-1.rolling.1.mga9

Publication date: 13 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4207 Description PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation. (CVE-2025-4207) References

• https://bugs.mageia.org/show_bug.cgi?id=34265
• https://www.postgresql.org/about/news/postgresql-175-169-1513-1418-and-1321-released-3072/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4207

SRPMS 9/core

• postgresql15-15.13-1.mga9
• postgresql13-13.21-1.mga9

Publication date: 12 May 2025
Type: bugfix
Affected Mageia releases : 9
Description Some translated man pages are badly rendered, like the nmap one in Russian. This changes the file 20less.sh to avoid defining the env variable LESSCHARSET. References

• https://bugs.mageia.org/show_bug.cgi?id=34251

SRPMS 9/core

• less-678-1.1.mga9

Publication date: 11 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-2866 Description PDF signature forgery with adbe.pkcs7.sha1 SubFilter. (CVE-2025-2866) References

• https://bugs.mageia.org/show_bug.cgi?id=34234
• https://lists.debian.org/debian-security-announce/2025/msg00070.html
• https://www.libreoffice.org/about-us/security/advisories/cve-2025-2866/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2866

SRPMS 9/core

• libreoffice-24.2.7.2-1.3.mga9

Publication date: 11 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32873 Description An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2.1. The django.utils.html.strip_tags() function is vulnerable to a potential denial-of-service (slow performance) when processing inputs containing large sequences of incomplete HTML tags. The template filter striptags is also vulnerable, because it is built on top of strip_tags(). (CVE-2025-32873) References

• https://bugs.mageia.org/show_bug.cgi?id=34259
• https://ubuntu.com/security/notices/USN-7501-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

SRPMS 9/core

• python-django-4.1.13-1.4.mga9

Publication date: 11 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-31162 , CVE-2025-31163 , CVE-2025-31164 Description Floating point exception in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via get_slope function. (CVE-2025-31162) Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via put_patternarc function. (CVE-2025-31163) Heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline. (CVE-2025-31164) References

• https://bugs.mageia.org/show_bug.cgi?id=34260
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/MJCOBXBMU3EIKTUVVEJUQTIAIJY6GWXG/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31162
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31163
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31164

SRPMS 9/core

• transfig-3.2.9a-1.mga9

Publication date: 09 May 2025
Type: bugfix
Affected Mageia releases : 9
Description WWE 2k23 small “artifacts” Variable Rate Shading (VRS) produces very aliased results on RADV with an AMD gpu Vulkan issues after sleeping on 9070 XT ring gfx_0.0.0 timeout after waking from sleep - RX 9070 radeonsi: CL conformance test `vector_swizzle` fails since 177427877bb50ad7ba24abfa13e55a2684d804df Random mesa crashes in kwin_wayland on a 6600XT Patch to fix clinfo on rusticl radv/aco: Ghost of Tsushima hangs and causes gpu resets on RDNA 3 GPU mesa-vulkan-driver-git.x86_64 causes strange colored rectangle artifacts in Final Fantasy XIV References

• https://bugs.mageia.org/show_bug.cgi?id=34248
• https://docs.mesa3d.org/relnotes/25.0.5.html

SRPMS 9/core

• mesa-25.0.5-1.mga9
• vulkan-tools-1.3.231.1-1.1.mga9

9/tainted

• mesa-25.0.5-1.mga9.tainted

Publication date: 08 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4083 , CVE-2025-4087 , CVE-2025-4091 , CVE-2025-4093 Description Process isolation bypass using "javascript:" URI links in cross-origin frames. (CVE-2025-4083) Unsafe attribute access during XPath parsing. (CVE-2025-4087) Memory safety bugs fixed in Firefox 138, Thunderbird 138, Firefox ESR 128.10, and Thunderbird 128.10. (CVE-2025-4091) Memory safety bug fixed in Firefox ESR 128.10 and Thunderbird 128.10. (CVE-2025-4093) References

• https://bugs.mageia.org/show_bug.cgi?id=34233
• https://www.thunderbird.net/en-US/thunderbird/128.10.0esr/releasenotes/
• https://www.mozilla.org/en-US/security/advisories/mfsa2025-32/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4083
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4087
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4091
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4093

SRPMS 9/core

• thunderbird-128.10.0-1.mga9
• thunderbird-l10n-128.10.0-1.mga9

Publication date: 08 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-4083 , CVE-2025-4087 , CVE-2025-4091 , CVE-2025-4093 Description A process isolation vulnerability in Firefox stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended frame, potentially enabling a sandbox escape, CVE-2025-4083. A vulnerability was identified in Firefox where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption, CVE-2025-4087. Memory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code, CVE-2025-4091. Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code, CVE-2025-4093. References

• https://bugs.mageia.org/show_bug.cgi?id=34232
• https://www.mozilla.org/en-US/firefox/128.10.0/releasenotes/
• https://www.mozilla.org/en-US/security/advisories/mfsa2025-29/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4083
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4087
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4091
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4093

SRPMS 9/core

• firefox-128.10.0-1.mga9
• firefox-l10n-128.10.0-1.mga9

Publication date: 08 May 2025
Type: bugfix
Affected Mageia releases : 9
Description Changes in Youtube's API make applications that use yt-dlp fail or even crash. This update fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=34241

SRPMS 9/core

• yt-dlp-2025.04.30-1.mga9