Advisories » MGASA-2026-0099

Updated cockpit-338 packages fix security vulnerability

Publication date: 16 Apr 2026
Modification date: 16 Apr 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-4631

Description

Unauthenticated remote code execution due to ssh command-line argument
injection. (CVE-2026-4631)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35351
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4631

SRPMS

9/core

• cockpit-338-1.7.mga9