Advisories » MGASA-2026-0198

Updated radare2 packages fix security vulnerability

Publication date: 12 Jun 2026
Modification date: 12 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-40499

Description

CVE-2026-40499, Command Injection via PDB Parser print_gvars()
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35375
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/PCMPUDTEBB4WMS5A4EHRR725KUAT3WWS/
• https://www.cve.org/CVERecord?id=CVE-2026-40499

SRPMS

9/core

• radare2-5.8.8-1.7.mga9