Alerts This Week
Warning Icon 1 449
Alerts This Week
Warning Icon 1 449

Mageia 9 libinput Significant Code Execution Vulnerability CVE-2026-0208

mageia
Calendar Grey June 15, 2026
Dist Mageia Esm H88
Critical Mageia security update addresses libinput flaw with arbitrary root code execution risk. Immediate action advised.
Security update

Summary

Description: In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution

References

- https://bugs.mageia.org/show_bug.cgi?id=35635

- https://www.openwall.com/lists/oss-security/2026/06/04/5

- https://www.openwall.com/lists/oss-security/2026/06/04/16

- https://www.cve.org/CVERecord?id=CVE-2026-50292

Topics%20covered

Topics Covered

security advisory code execution important root access Mageia libinput

Resolution

SRPMS

- 9/core/libinput-1.23.0-2.1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 15 Jun 2026
URL: https://advisories.mageia.org/MGASA-2026-0208.html
Type: security
CVE: CVE-2026-50292

Topics%20covered

Topics Covered

security advisory code execution important root access Mageia libinput

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here