Advisories » MGASA-2025-0172

Updated coreutils packages fix security vulnerability

Publication date: 31 May 2025
Modification date: 31 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-5278

Description

Heap buffer under-read in gnu coreutils sort via key specification.
(CVE-2025-5278)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34313
• https://www.openwall.com/lists/oss-security/2025/05/27/2
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5278

SRPMS

9/core

• coreutils-9.1-1.1.mga9