Alerts This Week
Warning Icon 1 1,111
Alerts This Week
Warning Icon 1 1,111

Mageia 9 zlib Important CPU Consumption DoS Vulnerability MGASA-2026-0076

mageia
Calendar Grey April 1, 2026
Dist Mageia Esm H88
Updated zlib packages for Mageia address critical security risks to prevent CPU consumption.
MGASA-2026-0076 - Updated zlib packages fix security vulnerability

Summary

Description: zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition. (CVE-2026-27171)

References

- https://bugs.mageia.org/show_bug.cgi?id=35291

- https://bugzilla.redhat.com/show_bug.cgi?id=2440530

- https://ubuntu.com/security/CVE-2026-27171

- https://security-tracker.debian.org/tracker/CVE-2026-27171

- https://www.cve.org/CVERecord?id=CVE-2026-27171

Resolution

SRPMS

- 9/core/zlib-1.2.13-1.4.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 31 Mar 2026
URL: https://advisories.mageia.org/MGASA-2026-0076.html
Type: security
CVE: CVE-2026-27171

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here