Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Mageia 9 AWStats Major Command Injection Vulnerability Fix MGASA-2026-0138

mageia
Calendar Grey May 15, 2026
Dist Mageia Esm H88
Critical update for Mageia awstats packages resolving command injection vulnerability helps secure systems.
MGASA-2026-0138 - Updated awstats packages fix security vulnerability

Summary

Description: AWStats is vulnerable to Command Injection via the open function. (CVE-2025-63261)

References

- https://bugs.mageia.org/show_bug.cgi?id=35407

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GP4DGW2LGHINXKYPZWR2WJ5DMROGGO66/

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-63261

Resolution

SRPMS

- 9/core/awstats-7.9-1.1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 15 May 2026
URL: https://advisories.mageia.org/MGASA-2026-0138.html
Type: security
CVE: CVE-2025-63261

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here