Mageia Security

Publication date: 28 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description Upstream fixed many bugs and made improvements since our current version. Please see the links for details. References

• https://bugs.mageia.org/show_bug.cgi?id=34190
• https://docs.mesa3d.org/relnotes/25.0.4.html
• https://docs.mesa3d.org/relnotes/25.0.3.html
• https://docs.mesa3d.org/relnotes/25.0.2.html
• https://docs.mesa3d.org/relnotes/25.0.1.html
• https://docs.mesa3d.org/relnotes/25.0.0.html
• https://docs.mesa3d.org/relnotes/24.3.4.html
• https://docs.mesa3d.org/relnotes/24.3.3.html
• https://docs.mesa3d.org/relnotes/24.3.2.html
• https://docs.mesa3d.org/relnotes/24.3.1.html

SRPMS 9/core

• libdrm-2.4.124-1.mga9
• wayland-1.23.1-1.mga9
• wayland-protocols-1.43-1.mga9
• mesa-25.0.4-1.mga9
• weston-11.0.1-1.1.mga9
• mutter-44.2-1.1.mga9
• kwayland-integration-5.27.10-1.1.mga9
• egl-wayland-1.1.11-1.1.mga9
• mesa-demos-8.5.0-3.1.mga9
• kwayland-5.114.0-1.1.mga9
• kwin-5.27.10-1.1.mga9
• xdg-desktop-portal-gtk-1.15.3-1.mga9
• xdg-desktop-portal-kde-5.27.10-1.1.mga9
• layer-shell-qt-5.27.10-1.1.mga9

9/tainted

• mesa-25.0.4-1.mga9.tainted

Publication date: 28 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-3619 , CVE-2025-3620 Description Heap buffer overflow in Codecs. (CVE-2025-3619) Use after free in USB. (CVE-2025-3620) References

• https://bugs.mageia.org/show_bug.cgi?id=34208
• https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_15.html
• https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_22.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3619
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3620

SRPMS 9/tainted

• chromium-browser-stable-134.0.6998.165-2.mga9.tainted

Publication date: 25 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32414 , CVE-2025-32415 Description [CVE-2025-32414] Buffer overflow when parsing text streams with Python API [CVE-2025-32415] Heap-based Buffer Overflow in xmlSchemaIDCFillNodeTables References

• https://bugs.mageia.org/show_bug.cgi?id=34210
• https://openwall.com/lists/oss-security/2025/04/17/3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32414
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32415

SRPMS 9/core

• libxml2-2.10.4-1.7.mga9

Publication date: 25 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32464 Description BUG/MEDIUM: sample: fix risk of overflow when replacing multiple regex back-refsAleandro Prudenzano of Doyensec and Edoardo Geraci of Codean Labs reported a bug in sample_conv_regsub(), which can cause replacements of multiple back-references to overflow the temporary trash buffer. The problem happens when doing "regsub(match,replacement,g)": we're replacing every occurrence of "match" with "replacement" in the input sample, which requires a length check. For this, a max is applied, so that a replacement may not use more than the remaining length in the buffer. However, the length check is made on the replaced pattern and not on the temporary buffer used to carry the new string. This results in the remaining size to be usable for each input match, which can go beyond the temporary buffer size if more than one occurrence has to be replaced with something that's larger than the remaining room. References

• https://bugs.mageia.org/show_bug.cgi?id=34186
• https://ubuntu.com/security/notices/USN-7431-1
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/QIY5CFNUWQY6R6BCFXJMFVWXB3WVUQRS/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32464

SRPMS 9/core

• haproxy-2.8.14-1.1.mga9

Publication date: 19 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description Opencpn needs some nonfree plugins to use and display paid nautical charts from countries that don't provide free charts. This new version 1.30.6.0 of opencpn-s63-plugin provides an updated nonfree binary necessary for aarch64. References

• https://bugs.mageia.org/show_bug.cgi?id=34196

SRPMS 9/nonfree

• opencpn-s63-plugin-1.30.6.0-1.mga9.nonfree

Publication date: 19 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description opencpn-weather-routing-plugin has been improved for route drawing with better polars and allowing routing from the boat position. Some little build problems have been corrected. References

• https://bugs.mageia.org/show_bug.cgi?id=34197

SRPMS 9/core

• opencpn-weather-routing-plugin-1.15.21.25-1.mga9

Publication date: 17 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-3066 , CVE-2025-3067 , CVE-2025-3068 , CVE-2025-3069 , CVE-2025-3070 , CVE-2025-3071 , CVE-2025-3072 , CVE-2025-3073 , CVE-2025-3074 Description Use after free in Site Isolation. (CVE-2025-3066) Inappropriate implementation in Custom Tabs. (CVE-2025-3067) Inappropriate implementation in Intents. (CVE-2025-3068) Inappropriate implementation in Extensions. (CVE-2025-3069) Insufficient validation of untrusted input in Extensions. (CVE-2025-3070) Inappropriate implementation in Navigations. (CVE-2025-3071) Inappropriate implementation in Custom Tabs. (CVE-2025-3072) Inappropriate implementation in Autofill. (CVE-2025-3073) Inappropriate implementation in Downloads. (CVE-2025-3074) References

• https://bugs.mageia.org/show_bug.cgi?id=34156
• https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop.html
• https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_8.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3066
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3067
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3068
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3069
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3070
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3071
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3072
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3073
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3074

SRPMS 9/tainted

• chromium-browser-stable-134.0.6998.165-1.mga9.tainted

Publication date: 17 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-24576 Description The Rust Security Response WG was notified that the Rust standard library did not properly escape arguments when invoking batch files (with the bat and cmd extensions) on Windows using the Command API. An attacker able to control the arguments passed to the spawned process could execute arbitrary shell commands by bypassing the escaping. The severity of this vulnerability is critical if you are invoking batch files on Windows with untrusted arguments. No other platform or use is affected. We update to rust 1.78.0 for future mesa updates in mageia 9. References

• https://bugs.mageia.org/show_bug.cgi?id=34107
• http://www.openwall.com/lists/oss-security/2024/04/09/16
• https://github.com/rust-lang/rust/security/advisories/GHSA-q455-m56c-85mh
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N323QAEEUVTJ354BTVQ7UB6LYXUX2BCL/
• https://blog.rust-lang.org/2024/04/09/cve-2024-24576/
• https://github.com/rust-lang/rust/releases/tag/1.78.0
• https://github.com/rust-lang/rust/releases/tag/1.77.2
• https://github.com/rust-lang/rust/releases/tag/1.77.1
• https://github.com/rust-lang/rust/releases/tag/1.77.0
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24576

SRPMS 9/core

• rust-1.78.0-1.mga9

Publication date: 17 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description This update brings major improvements in DB optimizer. This should speedup queries, even delete and update queries, which uses joins. Also other components like JSON, InnoDB or ALTER Table statements have been improved. For details see the changelog. References

• https://bugs.mageia.org/show_bug.cgi?id=34176
• https://mariadb.com/kb/en/what-is-mariadb-114/

SRPMS 9/core

• mariadb-11.4.5-2.mga9

Publication date: 14 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description When printing to the cups-pdf printer the output is one blank pdf page. This update fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=32198

SRPMS 9/core

• cups-pdf-3.0.2-1.mga9

Publication date: 12 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-31344 Description The giflib open-source component has a buffer overflow vulnerability. (CVE-2025-31344) References

• https://bugs.mageia.org/show_bug.cgi?id=34178
• https://www.openwall.com/lists/oss-security/2025/04/07/3
• https://lists.suse.com/pipermail/sle-updates/2025-April/038931.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31344

SRPMS 9/core

• giflib-5.2.1-7.2.mga9

Publication date: 12 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32364 , CVE-2025-32365 Description A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash when handling malformed inputs associated with INT_MIN. (CVE-2025-32364) Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check. (CVE-2025-32365) References

• https://bugs.mageia.org/show_bug.cgi?id=34182
• https://ubuntu.com/security/notices/USN-7426-1
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/7MHRTVNCUQHLCEUDCYX24NK4ID3BMFG5/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32364
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32365

SRPMS 9/core

• poppler-23.02.0-1.5.mga9

Publication date: 12 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-30258 Description In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS". (CVE-2025-30258) References

• https://bugs.mageia.org/show_bug.cgi?id=34165
• https://ubuntu.com/security/notices/USN-7412-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30258

SRPMS 9/core

• gnupg2-2.3.8-1.3.mga9

Publication date: 12 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-27795 Description ReadJXLImage in JXL in GraphicsMagick before 1.3.46 lacks image dimension resource limits. (CVE-2025-27795) References

• https://bugs.mageia.org/show_bug.cgi?id=34163
• https://lwn.net/Articles/1016352/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27795

SRPMS 9/core

• graphicsmagick-1.3.40-1.1.mga9

9/tainted

• graphicsmagick-1.3.40-1.1.mga9.tainted

Publication date: 12 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description Writer crashes in some circumstances when trying to edit or insert a TOC. This update fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=34174
• https://bugs.documentfoundation.org/show_bug.cgi?id=163325

SRPMS 9/core

• libreoffice-24.2.7.2-1.2.mga9

Publication date: 10 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-31115 Description XZ has a heap-use-after-free bug in threaded .xz decoder. (CVE-2025-31115) References

• https://bugs.mageia.org/show_bug.cgi?id=34164
• https://www.openwall.com/lists/oss-security/2025/04/03/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31115

SRPMS 9/core

• xz-5.4.3-1.1.mga9

Publication date: 10 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-40635 Description containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as root (UID 0). This could cause unexpected behavior for environments that require containers to run as a non-root user. This bug has been fixed in containerd 1.6.38, 1.7.27, and 2.04. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images. References

• https://bugs.mageia.org/show_bug.cgi?id=34145
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IAMUEOAZJQQS6MSFKLEO72TDYAONTTXF/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40635

SRPMS 9/core

• docker-containerd-1.7.27-1.mga9

Publication date: 10 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-31160 Description atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and application exit) or possibly have unspecified other impact by running certain types of unprivileged processes while a different user runs atop. (CVE-2025-31160) References

• https://bugs.mageia.org/show_bug.cgi?id=34139
• https://www.openwall.com/lists/oss-security/2025/03/26/2
• https://www.openwall.com/lists/oss-security/2025/03/26/3
• https://rachelbythebay.com/w/2025/03/26/atop/
• https://news.ycombinator.com/item?id=43485980
• https://news.ycombinator.com/item?id=43477057
• https://www.openwall.com/lists/oss-security/2025/03/29/1
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3K7T3QBXEP6TWTVJEMB47AVS2B2R5O5V/
• https://lists.debian.org/debian-security-announce/2025/msg00054.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31160

SRPMS 9/core

• atop-2.8.1-1.1.mga9

Publication date: 10 Apr 2025
Type: bugfix
Affected Mageia releases : 9
Description arte.tv has changed the URL of the videos and qarte is unable to retrieve the lists and the videos. Version 5.9.0 fixes the issue. References

• https://bugs.mageia.org/show_bug.cgi?id=34159
• https://bugs.launchpad.net/qarte/+bug/2102036

SRPMS 9/core

• qarte-5.9.0-1.mga9

Publication date: 05 Apr 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-2588 Description Hercules Augeas fa.c re_case_expand null pointer dereference. (CVE-2025-2588) References

• https://bugs.mageia.org/show_bug.cgi?id=34141
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JLS6PXWXBARZ5FZS4C2ASIP6X56BMH24/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2588

SRPMS 9/core

• augeas-1.12.0-4.1.mga9