Advisories » MGASA-2025-0255

Updated sope packages fix security vulnerability

Publication date: 31 Oct 2025
Modification date: 31 Oct 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-53603

Description

It was discovered that sope, the set of Objective-C frameworks powering
SOGo, contains a DoS bug which could cause a crash (CVE-2025-53603).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34416
• https://www.openwall.com/lists/oss-security/2025/07/02/3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53603

SRPMS

9/core

• sope-5.6.0-2.1.mga9