Actualizaciones de Seguridad

Publication date: 16 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-14607 , CVE-2025-14841 Description OFFIS DCMTK dcmdata dcbytstr.cc makeDicomByteString memory corruption. (CVE-2025-14607) OFFIS DCMTK dcmqrscp dcmqrdbi.cc startMoveRequest null pointer dereference. (CVE-2025-14841) References

• https://bugs.mageia.org/show_bug.cgi?id=34946
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/WA2BG2LFPVCYESQA5KLHS3YDK74NTELX/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14607
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14841

SRPMS 9/core

• dcmtk-3.6.7-4.7.mga9

Publication date: 16 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-66004 Description Local privilege escalation in usbmuxd from arbitrary local user to usbmux. (CVE-2025-66004) References

• https://bugs.mageia.org/show_bug.cgi?id=35118
• https://lists.debian.org/debian-security-announce/2026/msg00034.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66004

SRPMS 9/core

• usbmuxd-1.1.1-3.1.mga9

Publication date: 16 Feb 2026
Type: bugfix
Affected Mageia releases : 9
Description Regular update of mariadb which brings some bugfixes. References

• https://bugs.mageia.org/show_bug.cgi?id=35112
• https://mariadb.com/docs/release-notes/community-server/11.4/11.4.10

SRPMS 9/core

• mariadb-11.4.10-1.mga9

Publication date: 12 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-25646 Description Heap buffer overflow in png_set_quantize when called with no histogram and a palette larger than twice the requested maximum number of colors. (CVE-2026-25646) References

• https://bugs.mageia.org/show_bug.cgi?id=35115
• https://www.openwall.com/lists/oss-security/2026/02/09/7
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25646

SRPMS 9/core

• libpng-1.6.38-1.4.mga9

Publication date: 11 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-68670 Description xrdp improperly checks bounds of domain string length, which leads to Stack-based Buffer Overflow. (CVE-2025-68670) References

• https://bugs.mageia.org/show_bug.cgi?id=35111
• https://lists.debian.org/debian-security-announce/2026/msg00032.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68670

SRPMS 9/core

• xrdp-0.9.23.1-1.2.mga9

Publication date: 11 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-0818 Description CSS-based exfiltration of the content from partially encrypted emails when allowing remote content. (CVE-2026-0818) References

• https://bugs.mageia.org/show_bug.cgi?id=35100
• https://www.thunderbird.net/en-US/thunderbird/140.7.1esr/releasenotes/
• https://www.mozilla.org/en-US/security/advisories/mfsa2026-08/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0818

SRPMS 9/core

• thunderbird-140.7.1-1.mga9
• thunderbird-l10n-140.7.1-1.mga9

Publication date: 11 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-61726 , CVE-2025-61728 , CVE-2025-61730 , CVE-2025-61731 , CVE-2025-61732 , CVE-2025-68119 , CVE-2025-68121 Description net/http: memory exhaustion in Request.ParseForm. (CVE-2025-61726) archive/zip: denial of service when parsing arbitrary ZIP archives. (CVE-2025-61728) crypto/tls: handshake messages may be processed at the incorrect encryption level. (CVE-2025-61730) cmd/go: bypass of flag sanitization can lead to arbitrary code execution. (CVE-2025-61731) Potential code smuggling via doc comments in cmd/cgo. (CVE-2025-61732) cmd/go: unexpected code execution when invoking toolchain. (CVE-2025-68119) crypto/tls: Config.Clone copies automatically generated session ticket keys, session resumption does not account for the expiration of full certificate chain. (CVE-2025-68121) References

• https://bugs.mageia.org/show_bug.cgi?id=35007
• https://www.openwall.com/lists/oss-security/2026/01/15/3
• https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc
• https://openwall.com/lists/oss-security/2026/01/17/2
• https://openwall.com/lists/oss-security/2026/01/17/3
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/NH2ETRY5I4475P2G36TA426YNBGAZLJM/
• https://www.openwall.com/lists/oss-security/2026/02/07/2
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61726
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61728
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61730
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61731
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61732
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68119
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68121

SRPMS 9/core

• golang-1.24.13-1.mga9

Publication date: 09 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-15269 , CVE-2025-15270 , CVE-2025-15275 , CVE-2025-15279 Description FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. (CVE-2025-15269) FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. (CVE-2025-15270) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. (CVE-2025-15275) FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. (CVE-2025-15279) References

• https://bugs.mageia.org/show_bug.cgi?id=35091
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NFM3OPUTYR55GA65K3XOPK3FXAH7EWEJ/
• https://github.com/advisories/GHSA-hp8x-4h95-9799
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15269
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15270
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15275
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15279

SRPMS 9/core

• fontforge-20220308-2.2.mga9

Publication date: 09 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-1642 Description MitM injection. (CVE-2026-1642) References

• https://bugs.mageia.org/show_bug.cgi?id=35104
• https://www.openwall.com/lists/oss-security/2026/02/05/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1642

SRPMS 9/core

• nginx-1.26.3-1.2.mga9

Publication date: 06 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-13473 , CVE-2025-14550 , CVE-2026-1207 , CVE-2026-1285 , CVE-2026-1287 , CVE-2026-1312 Description Username enumeration through timing difference in mod_wsgi authentication handler. (CVE-2025-13473) Potential denial-of-service vulnerability via repeated headers when using ASGI. (CVE-2025-14550) Potential SQL injection via raster lookups on PostGIS. (CVE-2026-1207) Potential denial-of-service vulnerability in django.utils.text.Truncator HTML methods. (CVE-2026-1285) Potential SQL injection in column aliases via control characters. (CVE-2026-1287) Potential SQL injection via QuerySet.order_by and FilteredRelation. (CVE-2026-1312) References

• https://bugs.mageia.org/show_bug.cgi?id=35103
• https://ubuntu.com/security/notices/USN-8009-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13473
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14550
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1207
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1285
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1287
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1312

SRPMS 9/core

• python-django-4.1.13-1.10.mga9

Publication date: 06 Feb 2026
Type: bugfix
Affected Mageia releases : 9
Description This update restores broken features and provides fixes from upstream. References

• https://bugs.mageia.org/show_bug.cgi?id=35098
• https://github.com/yt-dlp/yt-dlp/blob/2026.01.31/Changelog.md

SRPMS 9/core

• yt-dlp-2026.02.04-1.mga9

Publication date: 05 Feb 2026
Type: bugfix
Affected Mageia releases : 9
Description The reports on libreoffice base are not well formatted. This updated fixes this long-standing bug. References

• https://bugs.mageia.org/show_bug.cgi?id=31894

SRPMS 9/core

• libformula-1.1.6-14.1.mga9
• ant-contrib-1.0-0.39.b3.1.mga9

Publication date: 04 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-24515 , CVE-2026-25210 Description In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data. (CVE-2026-24515) In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation. (CVE-2026-25210) References

• https://bugs.mageia.org/show_bug.cgi?id=35089
• https://www.openwall.com/lists/oss-security/2026/01/31/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24515
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25210

SRPMS 9/core

• expat-2.7.4-1.mga9

Publication date: 04 Feb 2026
Type: bugfix
Affected Mageia releases : 9
Description The python3-svn package can't be used due missing symbols. This update fixes the reported issue. References

• https://bugs.mageia.org/show_bug.cgi?id=35085

SRPMS 9/core

• subversion-1.14.3-1.1.mga9

Publication date: 02 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-25621 , CVE-2025-64329 Description It was discovered that containerd incorrectly set certain directory path permissions. An attacker could possibly use this issue to achieve unauthorised access to the files. (CVE-2024-25621) It was discovered that containerd did not properly handle the execution of the goroutine of container attach. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-64329) References

• https://bugs.mageia.org/show_bug.cgi?id=35081
• https://ubuntu.com/security/notices/USN-7983-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25621
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64329

SRPMS 9/core

• docker-containerd-1.7.29-1.mga9

Publication date: 31 Jan 2026
Type: bugfix
Affected Mageia releases : 9
Description This updated version of remove-old-kernels correctly handles kernel removal in persistent LIVE systems and protects the originally installed kernel from being removed. There are other bug fixes and translation improvements since the last version. References

• https://bugs.mageia.org/show_bug.cgi?id=34951

SRPMS 9/core

• remove-old-kernels-1.0.5-1.mga9

Publication date: 30 Jan 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-15467 , CVE-2025-68160 , CVE-2025-69418 , CVE-2025-69419 , CVE-2025-69420 , CVE-2025-69421 , CVE-2026-22795 , CVE-2026-22796 Description Stack buffer overflow in CMS AuthEnvelopedData parsing. (CVE-2025-15467) Heap out-of-bounds write in BIO_f_linebuffer on short writes. (CVE-2025-68160) Unauthenticated/unencrypted trailing bytes with low-level OCB function calls. (CVE-2025-69418) Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion. (CVE-2025-69419) Missing ASN1_TYPE validation in TS_RESP_verify_response() function. (CVE-2025-69420) NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function. (CVE-2025-69421) Missing ASN1_TYPE validation in PKCS#12 parsing. (CVE-2026-22795) ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function. (CVE-2026-22796) References

• https://bugs.mageia.org/show_bug.cgi?id=35077
• https://www.openwall.com/lists/oss-security/2026/01/27/5
• https://www.openwall.com/lists/oss-security/2026/01/27/7
• https://openssl-library.org/news/secadv/20260127.txt
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15467
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68160
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-69418
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-69419
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-69420
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-69421
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22795
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22796

SRPMS 9/core

• openssl-3.0.19-1.mga9

Publication date: 30 Jan 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-67268 , CVE-2025-67269 Description gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, which handles NMEA2000 PGN 129540 (GNSS Satellites in View) packets, fails to validate the user-supplied satellite count against the size of the skyview array (184 elements). This allows an attacker to write beyond the bounds of the array by providing a satellite count up to 255, leading to memory corruption, Denial of Service (DoS), and potentially arbitrary code execution. (CVE-2025-67268) An integer underflow vulnerability exists in the `nextstate()` function in `gpsd/packet.c` of gpsd versions prior to commit `ffa1d6f40bca0b035fc7f5e563160ebb67199da7`. When parsing a NAVCOM packet, the payload length is calculated using `lexer->length = (size_t)c - 4` without checking if the input byte `c` is less than 4. This results in an unsigned integer underflow, setting `lexer->length` to a very large value (near `SIZE_MAX`). The parser then enters a loop attempting to consume this massive number of bytes, causing 100% CPU utilization and a Denial of Service (DoS) condition. (CVE-2025-67269) References

• https://bugs.mageia.org/show_bug.cgi?id=34959
• https://ubuntu.com/security/notices/USN-7948-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-67268
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-67269

SRPMS 9/core

• gpsd-3.25-1.1.mga9

Publication date: 30 Jan 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-8732 , CVE-2026-0989 , CVE-2026-0990 , CVE-2026-0992 Description xmlcatalog xmlParseSGMLCatalog recursion. (CVE-2025-8732) Unbounded relaxng include recursion leading to stack overflow. (CVE-2026-0989) Denial of service via uncontrolled recursion in xml catalog processing. (CVE-2026-0990) Denial of service via crafted xml catalogs. (CVE-2026-0992) References

• https://bugs.mageia.org/show_bug.cgi?id=35058
• https://ubuntu.com/security/notices/USN-7974-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8732
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0989
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0990
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0992

SRPMS 9/core

• libxml2-2.10.4-1.9.mga9

Publication date: 30 Jan 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-58150 , CVE-2026-23553 Description x86: buffer overrun with shadow paging + tracing. (CVE-2025-58150) x86: incomplete IBPB for vCPU isolation. (CVE-2026-23553) References

• https://bugs.mageia.org/show_bug.cgi?id=35074
• https://www.openwall.com/lists/oss-security/2026/01/27/1
• https://www.openwall.com/lists/oss-security/2026/01/27/3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-58150
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23553

SRPMS 9/core

• xen-4.17.5-1.git20251028.2.mga9