Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Mageia 9 libinput Significant Code Execution Vulnerability CVE-2026-0208

mageia
Calendar Grey June 15, 2026
Scroller Mageia
Critical Mageia security update addresses libinput flaw with arbitrary root code execution risk. Immediate action advised.
Security update

Summary

Description: In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution

References

- https://bugs.mageia.org/show_bug.cgi?id=35635

- https://www.openwall.com/lists/oss-security/2026/06/04/5

- https://www.openwall.com/lists/oss-security/2026/06/04/16

- https://www.cve.org/CVERecord?id=CVE-2026-50292

Resolution

SRPMS

- 9/core/libinput-1.23.0-2.1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 15 Jun 2026 
URL: https://advisories.mageia.org/MGASA-2026-0208.html
Type: security
CVE: CVE-2026-50292

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.