Explore top 10 tips to secure your open-source projects now. Read More
×Security update. Publication date: 10 Jul 2026 URL: https://advisories.mageia.org/MGASA-2026-0240.html Type: security Affected Mageia releases: 10, 9 CVE: CVE-2026-52858, CVE-2026-52859, CVE-2026-52860, CVE-2026-55693, CVE-2026-55892, CVE-2026-55895, CVE-2026-57451, CVE-2026-57452, CVE-2026-57453, CVE-2026-57454, CVE-2026-57455, CVE-2026-57456 Description: The updated packages fix security vulnerabilities: Arbitrary Code Execution via Python Omni-Completion in Vim < 9.2.0561. (CVE-2026-52858) Out-of-bounds Read in Terminal Screen Snapshot in Vim < 9.2.0565. (CVE-2026-52859) Arbitrary Code Execution via Python Omni-Completion in Vim < 9.2.0597. (CVE-2026-52860) Out-of-bounds Write in Spell File Word Count in Vim < 9.2.0653. (CVE-2026-55693) Out-of-bounds Write in Spell File Prefix Dump in Vim < 9.2.0662. (CVE-2026-55892) Vimscript Code Injection in netrw NetrwLocalRmFile() via crafted filename affects Vim < 9.2.0663. (CVE-2026-55895) Out-of-bounds Read in Text Property Count in Vim < 9.2.0670. (CVE-2026-57451) Out-of-bounds Read with libsodium-encrypted Files in Vim < 9.2.0671. (CVE-2026-57452) PowerShell Command Injection in zip.vim via Crafted Archive Entry Names in Vim > 9.1.1783 && Vim < 9.2.0678. (CVE-2026-57453) Out-of-bounds Read with Text Properties in Vim > = 9.2.0320 && Vim < 9.2.0679. (CVE-2026-57454) Out-of-bounds Write in SOFO Soundfolding in Vim < 9.2.0698. (CVE-2026-57455) Arbitrary Code Execution via Python Omni-Completion Docstrings in Vim < 9.2.0699. (CVE-2026-57456) References: - https://bugs.mageia.org/show_bug.cgi?id=35580 - https://www.openwall.com/lists/oss-security/2026/05/22/13 - https://github.com/vim/vim/security/advisories/GHSA-3h95-3962-mmvf - https://www.openwall.com/lists/oss-security/2026/05/29/5 - https://github.com/vim/vim/security/advisories/GHSA-52mc-rq6p-rc7c - https://www.openwall.com/lists/oss-security/2026/05/30/4 - https://github.com/vim/vim/security/advisories/GHSA-47gw-8gc3-mgcm -https://www.openwall.com/lists/oss-security/2026/06/04/14 - https://github.com/vim/vim/security/advisories/GHSA-65p9-mwwx-7468 - https://www.openwall.com/lists/oss-security/2026/06/15/8 - https://github.com/vim/vim/security/advisories/GHSA-wgh4-64f7-q3jq - https://www.openwall.com/lists/oss-security/2026/06/16/12 - https://github.com/vim/vim/security/advisories/GHSA-qm9w-fmpj-879h - https://www.openwall.com/lists/oss-security/2026/06/16/13 - https://github.com/vim/vim/security/advisories/GHSA-vhh8-v6wx-hjjh - https://www.openwall.com/lists/oss-security/2026/06/17/10 - https://github.com/vim/vim/security/advisories/GHSA-f36c-2qcp-7gpw - https://www.openwall.com/lists/oss-security/2026/06/18/7 - https://github.com/vim/vim/security/advisories/GHSA-c4j9-wr9j-4486 - https://www.openwall.com/lists/oss-security/2026/06/20/2 - https://github.com/vim/vim/security/advisories/GHSA-x5fg-h5w9-9frf - https://www.openwall.com/lists/oss-security/2026/06/20/3 - https://github.com/vim/vim/security/advisories/GHSA-ww8h-47xp-hp4w - https://www.openwall.com/lists/oss-security/2026/06/21/1 - https://github.com/vim/vim/security/advisories/GHSA-q8mh-6qm3-25g4 - https://www.openwall.com/lists/oss-security/2026/06/21/2 - https://github.com/vim/vim/security/advisories/GHSA-ppj8-wqjf-6fp3 - https://www.openwall.com/lists/oss-security/2026/06/24/9 - https://github.com/vim/vim/security/advisories/GHSA-m3hf-xcm3-xhm2 - https://www.openwall.com/lists/oss-security/2026/06/27/6 - https://github.com/vim/vim/security/advisories/GHSA-mf92-v4xw-j45x - https://www.openwall.com/lists/oss-security/2026/06/28/1 - https://github.com/vim/vim/security/advisories/GHSA-fh26-8f79-wj97 - https://www.cve.org/CVERecord?id=CVE-2026-52858 - https://www.cve.org/CVERecord?id=CVE-2026-52859 - https://www.cve.org/CVERecord?id=CVE-2026-52860 - https://www.cve.org/CVERecord?id=CVE-2026-55693 - https://www.cve.org/CVERecord?id=CVE-2026-55892 - https://www.cve.org/CVERecord?id=CVE-2026-55895 - https://www.cve.org/CVERecord?id=CVE-2026-57451 -https://www.cve.org/CVERecord?id=CVE-2026-57452 - https://www.cve.org/CVERecord?id=CVE-2026-57453 - https://www.cve.org/CVERecord?id=CVE-2026-57454 - https://www.cve.org/CVERecord?id=CVE-2026-57455 - https://www.cve.org/CVERecord?id=CVE-2026-57456 SRPMS: - 10/core/vim-9.2.782-1.mga10 - 9/core/vim-9.2.782-1.mga9 . Latest Mageia security update addresses critical issues in vim with multiple vulnerabilities fixed to enhance security.. Mageia vim security patch arbitrary code execution security fixes. . LinuxSecurity.com Team
Security update. Publication date: 09 Jul 2026 URL: https://advisories.mageia.org/MGASA-2026-0239.html Type: security Affected Mageia releases: 10, 9 CVE: CVE-2026-49145, CVE-2026-49146, CVE-2026-49147 Description: This update fixes several security vulnerabilities. References: - https://bugs.mageia.org/show_bug.cgi?id=35664 - https://lists.opensuse.org/archives/list/
Security update. Publication date: 09 Jul 2026 URL: https://advisories.mageia.org/MGASA-2026-0238.html Type: security Affected Mageia releases: 10 CVE: CVE-2026-48095 Description: 7-Zip has a heap buffer overflow via NTFS compressed stream buffer under-allocation. (CVE-2026-48095) References: - https://bugs.mageia.org/show_bug.cgi?id=35647 - https://lists.opensuse.org/archives/list/
Security update. Publication date: 07 Jul 2026 URL: https://advisories.mageia.org/MGAA-2026-0041.html Type: bugfix Affected Mageia releases: 10 Description: yt-dlp had a higher release number in Mageia 9 than in Mageia 10, so the yt-dlp packages would not update to Mageia 10 when upgrading Mageia. These yt-dlp packages fix the issue. References: - https://bugs.mageia.org/show_bug.cgi?id=35834 - https://www.mageialinux-online.org/forum/topic-32629.php#m337295 SRPMS: - 10/core/yt-dlp-2026.06.09-1.1.mga10 . Updates for yt-dlp in Mageia to address upgrade issues from Mageia 9 to Mageia 10. Key security improvements included.. Mageia Yt-dlp Security Bugfix Update Upgrade. . LinuxSecurity.com Team
Security update. Publication date: 07 Jul 2026 URL: https://advisories.mageia.org/MGAA-2026-0040.html Type: bugfix Affected Mageia releases: 10 Description: nheko was permanently using 100% of the CPU, which was caused by an issue with curl. This update fixes the issue. References: - https://bugs.mageia.org/show_bug.cgi?id=35732 - https://github.com/Nheko-Reborn/nheko/issues/2054 SRPMS: - 10/core/curl-8.21.0-1.mga10 . Critical security fix for curl in Mageia 10 addressing CPU usage issue impacting performance, please update immediately.. curl security fix, mageia bug report, CPU usage issue, mageia curl update. . LinuxSecurity.com Team
Security update. Publication date: 06 Jul 2026 URL: https://advisories.mageia.org/MGAA-2026-0039.html Type: bugfix Affected Mageia releases: 10 Description: These updated packages enable building for Mageia 10 stable. References: - https://bugs.mageia.org/show_bug.cgi?id=35788 - https://github.com/rpm-software-management/mock/ SRPMS: - 10/core/distribution-gpg-keys-1.119-1.mga10 - 10/core/mock-core-configs-44.4-1.mga10 - 10/core/mock-mageia-configs-10-4.1.mga10 . A security update for Mageia 10 enhancing the building capabilities with mock and relevant packages.. Mageia security update, mock application, package management, system stability. . LinuxSecurity.com Team
Security update. Publication date: 04 Jul 2026 URL: https://advisories.mageia.org/MGASA-2026-0235.html Type: security Affected Mageia releases: 10 CVE: CVE-2026-44168, CVE-2026-44169, CVE-2026-44170, CVE-2026-44171, CVE-2026-44172, CVE-2026-44173 Description: This update to the latest LTS version fixes some severe security vulnerabilities. References: - https://bugs.mageia.org/show_bug.cgi?id=35675 - https://mariadb.com/docs/release-notes/community-server/12.3/12.3.2 - https://www.cve.org/CVERecord?id=CVE-2026-44168 - https://www.cve.org/CVERecord?id=CVE-2026-44169 - https://www.cve.org/CVERecord?id=CVE-2026-44170 - https://www.cve.org/CVERecord?id=CVE-2026-44171 - https://www.cve.org/CVERecord?id=CVE-2026-44172 - https://www.cve.org/CVERecord?id=CVE-2026-44173 SRPMS: - 10/core/mariadb-12.3.2-1.mga10 . A critical security advisory for Mageia addressing multiple severe issues in MariaDB. Immediate updates recommended.. Mageia MariaDB security critical vulnerabilities. . LinuxSecurity.com Team
Security update. Publication date: 04 Jul 2026 URL: https://advisories.mageia.org/MGAA-2026-0038.html Type: bugfix Affected Mageia releases: 10 Description: Update php-mailparse to the latest version. This release fixes a segmentation fault References: - https://bugs.mageia.org/show_bug.cgi?id=35674 - https://pecl.php.net/package-changelog.php?package=mailparse&release=3.2.0 SRPMS: - 10/core/php8.5-mailparse-3.2.0-1.mga10 - 10/core/php8.4-mailparse-3.2.0-1.mga10 . Update for Mageia addresses segmentation fault in php-mailparse, enhancing system stability and performance.. Mageia php8 update, php-mailparse security fix, Mageia 10 patch. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.