Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
203
security advisorysecurity issueimportantMageia 9 MGASA-2026-0052 Important Rootcerts Security Fixes
MGASA-2026-0052 - Updated rootcerts, nss & firefox packages fix security vulnerabilities. MGASA-2026-0052 - Updated rootcerts, nss & firefox packages fix security vulnerabilities Publication date: 09 Mar 2026 URL: https://advisories.mageia.org/MGASA-2026-0052.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-2757, CVE-2026-2758, CVE-2026-2759, CVE-2026-2761, CVE-2026-2762, CVE-2026-2763, CVE-2026-2764, CVE-2026-2765, CVE-2026-2766, CVE-2026-2767, CVE-2026-2768, CVE-2026-2769, CVE-2026-2770, CVE-2026-2771, CVE-2026-2772, CVE-2026-2773, CVE-2026-2774, CVE-2026-2775, CVE-2026-2776, CVE-2026-2777, CVE-2026-2778, CVE-2026-2779, CVE-2026-2780, CVE-2026-2781, CVE-2026-2782, CVE-2026-2783, CVE-2026-2784, CVE-2026-2785, CVE-2026-2786, CVE-2026-2787, CVE-2026-2788, CVE-2026-2789, CVE-2026-2790, CVE-2026-2791, CVE-2026-2792, CVE-2026-2793 Description: Incorrect boundary conditions in the WebRTC: Audio/Video component. (CVE-2026-2757) Use-after-free in the JavaScript: GC component. (CVE-2026-2758) Incorrect boundary conditions in the Graphics: ImageLib component. (CVE-2026-2759) Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. (CVE-2026-2760) Sandbox escape in the Graphics: WebRender component. (CVE-2026-2761) Integer overflow in the JavaScript: Standard Library component. (CVE-2026-2762) Use-after-free in the JavaScript Engine component. (CVE-2026-2763) JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. (CVE-2026-2764) Use-after-free in the JavaScript Engine component. (CVE-2026-2765) Use-after-free in the JavaScript Engine: JIT component. (CVE-2026-2766) Use-after-free in the JavaScript: WebAssembly component. (CVE-2026-2767) Sandbox escape in the Storage: IndexedDB component. (CVE-2026-2768) Use-after-free in the Storage: IndexedDB component.(CVE-2026-2769) Use-after-free in the DOM: Bindings (WebIDL) component. (CVE-2026-2770) Undefined behavior in the DOM: Core & HTML component. (CVE-2026-2771) Use-after-free in the Audio/Video: Playback component. (CVE-2026-2772) Incorrect boundary conditions in the Web Audio component. (CVE-2026-2773) Integer overflow in the Audio/Video component. (CVE-2026-2774) Mitigation bypass in the DOM: HTML Parser component. (CVE-2026-2775) Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. (CVE-2026-2776) Privilege escalation in the Messaging System component. (CVE-2026-2777) Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. (CVE-2026-2778) Incorrect boundary conditions in the Networking: JAR component. (CVE-2026-2779) Privilege escalation in the Netmonitor component. (CVE-2026-2780) Integer overflow in the Libraries component in NSS. (CVE-2026-2781) Privilege escalation in the Netmonitor component. (CVE-2026-2782) Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. (CVE-2026-2783) Mitigation bypass in the DOM: Security component. (CVE-2026-2784) Invalid pointer in the JavaScript Engine component. (CVE-2026-2785) Use-after-free in the JavaScript Engine component. (CVE-2026-2786) Use-after-free in the DOM: Window and Location component. (CVE-2026-2787) Incorrect boundary conditions in the Audio/Video: GMP component. (CVE-2026-2788) Use-after-free in the Graphics: ImageLib component. (CVE-2026-2789) Same-origin policy bypass in the Networking: JAR component. (CVE-2026-2790) Mitigation bypass in the Networking: Cache component. (CVE-2026-2791) Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. (CVE-2026-2792) Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. (CVE-2026-2793) References: - https://bugs.mageia.org/show_bug.cgi?id=35165 -https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_121.html - https://www.firefox.com/en-US/firefox/140.8.0/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2026-15/ - https://www.cve.org/CVERecord?id=CVE-2026-2757 - https://www.cve.org/CVERecord?id=CVE-2026-2758 - https://www.cve.org/CVERecord?id=CVE-2026-2759 - https://www.cve.org/CVERecord?id=CVE-2026-2761 - https://www.cve.org/CVERecord?id=CVE-2026-2762 - https://www.cve.org/CVERecord?id=CVE-2026-2763 - https://www.cve.org/CVERecord?id=CVE-2026-2764 - https://www.cve.org/CVERecord?id=CVE-2026-2765 - https://www.cve.org/CVERecord?id=CVE-2026-2766 - https://www.cve.org/CVERecord?id=CVE-2026-2767 - https://www.cve.org/CVERecord?id=CVE-2026-2768 - https://www.cve.org/CVERecord?id=CVE-2026-2769 - https://www.cve.org/CVERecord?id=CVE-2026-2770 - https://www.cve.org/CVERecord?id=CVE-2026-2771 - https://www.cve.org/CVERecord?id=CVE-2026-2772 - https://www.cve.org/CVERecord?id=CVE-2026-2773 - https://www.cve.org/CVERecord?id=CVE-2026-2774 - https://www.cve.org/CVERecord?id=CVE-2026-2775 - https://www.cve.org/CVERecord?id=CVE-2026-2776 - https://www.cve.org/CVERecord?id=CVE-2026-2777 - https://www.cve.org/CVERecord?id=CVE-2026-2778 - https://www.cve.org/CVERecord?id=CVE-2026-2779 - https://www.cve.org/CVERecord?id=CVE-2026-2780 - https://www.cve.org/CVERecord?id=CVE-2026-2781 - https://www.cve.org/CVERecord?id=CVE-2026-2782 - https://www.cve.org/CVERecord?id=CVE-2026-2783 - https://www.cve.org/CVERecord?id=CVE-2026-2784 - https://www.cve.org/CVERecord?id=CVE-2026-2785 - https://www.cve.org/CVERecord?id=CVE-2026-2786 - https://www.cve.org/CVERecord?id=CVE-2026-2787 - https://www.cve.org/CVERecord?id=CVE-2026-2788 - https://www.cve.org/CVERecord?id=CVE-2026-2789 - https://www.cve.org/CVERecord?id=CVE-2026-2790 - https://www.cve.org/CVERecord?id=CVE-2026-2791 - https://www.cve.org/CVERecord?id=CVE-2026-2792 - https://www.cve.org/CVERecord?id=CVE-2026-2793 SRPMS: - 9/core/rootcerts-20260206.00-1.mga9 - 9/core/nss-3.121.0-1.mga9 -9/core/firefox-140.8.0-1.mga9 - 9/core/firefox-l10n-140.8.0-1.mga9 . Updated rootcerts enhance security in Mageia 9 addressing critical vulnerabilities and possible sandbox escapes. Stay secure!. Mageia security rootcerts vulnerabilities patch. . Severity: Important. LinuxSecurity.com Team
Mar 09, 2026
•Important
Mageia
203
security advisoryfirefoxout-of-boundsMageia 9: MGASA-2025-0165 critical: rootcerts, firefox out-of-bounds access
Out-of-bounds access when resolving Promise objects. (CVE-2025-4918) Out-of-bounds access when optimizing linear sums. (CVE-2025-4919) References: - https://bugs.mageia.org/show_bug.cgi?id=34287 . MGASA-2025-0165 - Updated rootcerts, nss & firefox packages fix security vulnerabilities Publication date: 27 May 2025 URL: https://advisories.mageia.org/MGASA-2025-0165.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-4918, CVE-2025-4919 Out-of-bounds access when resolving Promise objects. (CVE-2025-4918) Out-of-bounds access when optimizing linear sums. (CVE-2025-4919) References: - https://bugs.mageia.org/show_bug.cgi?id=34287 - https://www.firefox.com/en-US/firefox/128.10.1/releasenotes/?redirect_source=mozilla-org - https://www.mozilla.org/en-US/security/advisories/mfsa2025-37/ - https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html - https://www.cve.org/CVERecord?id=CVE-2025-4918 - https://www.cve.org/CVERecord?id=CVE-2025-4919 SRPMS: - 9/core/rootcerts-20250424.00-1.mga9 - 9/core/nss-3.111.0-1.mga9 - 9/core/firefox-128.10.1-2.mga9 - 9/core/firefox-l10n-128.10.1-1.mga9 . MGASA-2025-0166: Revised openssl, curl & vim packages address vulnerabilities for Mageia 9.. Security vulnerabilities, Mageia 9 updates, Out-of-bounds access, Firefox packages, NSS patches. . Severity: Critical. LinuxSecurity.com Team
May 27, 2025
•Critical
Mageia
203
security advisorysecurity issuesx86_64Mageia 9: 2024-0325 moderate: Rootcerts and Firefox security fixes
The current versions have reached EOL and several security vulnerabilities were fixed by Mozilla. We are having some issues that are delaying the build for some architectures, so for the moment we are releasing this update just for x86_64 . MGASA-2024-0325 - Updated rootcerts nss firefox firefox-l10n packages fix security vulnerabilities Publication date: 05 Oct 2024 URL: https://advisories.mageia.org/MGASA-2024-0325.html Type: security Affected Mageia releases: 9 CVE: CVE-2024-7519, CVE-2024-7520, CVE-2024-7521, CVE-2024-7522, CVE-2024-7524, CVE-2024-7525, CVE-2024-7526, CVE-2024-7527, CVE-2024-7528, CVE-2024-7529, CVE-2024-7531, CVE-2024-8385, CVE-2024-8381, CVE-2024-8382, CVE-2024-8383, CVE-2024-8384, CVE-2024-8386, CVE-2024-8387 The current versions have reached EOL and several security vulnerabilities were fixed by Mozilla. We are having some issues that are delaying the build for some architectures, so for the moment we are releasing this update just for x86_64 References: - https://bugs.mageia.org/show_bug.cgi?id=33501 - https://www.firefox.com/en-US/firefox/115.14.0/releasenotes/?redirect_source=mozilla-org - https://www.firefox.com/en-US/firefox/128.1.0/releasenotes/?redirect_source=mozilla-org - https://www.mozilla.org/en-US/security/advisories/mfsa2024-34/ - https://www.mozilla.org/en-US/security/advisories/mfsa2024-34/ - https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_103.html#mozilla-projects-nss-nss-3-103-release-notes - https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_104.html#mozilla-projects-nss-nss-3-104-release-notes - https://www.firefox.com/en-US/firefox/128.2.0/releasenotes/?redirect_source=mozilla-org - https://www.mozilla.org/en-US/security/advisories/mfsa2024-40/ - https://www.firefox.com/en-US/firefox/128.3.0/releasenotes/?redirect_source=mozilla-org - https://www.mozilla.org/en-US/security/advisories/mfsa2024-47/ -https://www.cve.org/CVERecord?id=CVE-2024-7519 - https://www.cve.org/CVERecord?id=CVE-2024-7520 - https://www.cve.org/CVERecord?id=CVE-2024-7521 - https://www.cve.org/CVERecord?id=CVE-2024-7522 - https://www.cve.org/CVERecord?id=CVE-2024-7524 - https://www.cve.org/CVERecord?id=CVE-2024-7525 - https://www.cve.org/CVERecord?id=CVE-2024-7526 - https://www.cve.org/CVERecord?id=CVE-2024-7527 - https://www.cve.org/CVERecord?id=CVE-2024-7528 - https://www.cve.org/CVERecord?id=CVE-2024-7529 - https://www.cve.org/CVERecord?id=CVE-2024-7531 - https://www.cve.org/CVERecord?id=CVE-2024-8385 - https://www.cve.org/CVERecord?id=CVE-2024-8381 - https://www.cve.org/CVERecord?id=CVE-2024-8382 - https://www.cve.org/CVERecord?id=CVE-2024-8383 - https://www.cve.org/CVERecord?id=CVE-2024-8384 - https://www.cve.org/CVERecord?id=CVE-2024-8386 - https://www.cve.org/CVERecord?id=CVE-2024-8387 SRPMS: - 9/core/rootcerts-20240823.00-1.mga9 - 9/core/nss-3.105.0-1.mga9 - 9/core/firefox-128.3.0-1.mga9 - 9/core/firefox-l10n-128.3.0-1.mga9 . Revised Mageia root certificates and Firefox updates address vulnerabilities impacting x86_64 architectures.. Mageia Security Advisory, Mozilla Fixes, Security Updates, Firefox Patch, Rootcerts Risks. . LinuxSecurity.com Team
Oct 05, 2024
Mageia
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!