Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Mageia 9: quictls Important Out-of-Bounds Issues MGASA-2025-0241

mageia
Calendar Grey October 20, 2025
Dist Mageia Esm H88
Two security issues and bug fixes on Mageia for quictls, addressing out-of-bounds improvements to enhance security.
MGASA-2025-0241 - Updated quictls packages with two security issues and bug fixes

Summary

Description: Two security issues and miscellaneous minor bug fixes. Fix Out-of-bounds read & write in RFC 3211 KEK Unwrap. (CVE-2025-9230) Fix Out-of-bounds read in HTTP client no_proxy handling. (CVE-2025-9232)

References

- https://bugs.mageia.org/show_bug.cgi?id=34674

- https://openssl-library.org/news/vulnerabilities/#CVE-2025-9230

- https://openssl-library.org/news/vulnerabilities/#CVE-2025-9232

- https://www.cve.org/CVERecord?id=CVE-2025-9230

- https://www.cve.org/CVERecord?id=CVE-2025-9232

Topics%20covered

Topics Covered

security advisory important out-of-bounds http client Mageia quictls

Resolution

SRPMS

- 9/core/quictls-3.0.18-1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 20 Oct 2025
URL: https://advisories.mageia.org/MGASA-2025-0241.html
Type: security
CVE: CVE-2025-9230, CVE-2025-9232

Topics%20covered

Topics Covered

security advisory important out-of-bounds http client Mageia quictls

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here