Advisories » MGASA-2026-0209

Updated evince, atril & xreader packages fix security vulnerability

Publication date: 15 Jun 2026
Modification date: 15 Jun 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2026-46529

Description

Evince/Atril/Xreader command injection. (CVE-2026-46529)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35553
• https://www.openwall.com/lists/oss-security/2026/05/19/34
• https://www.cve.org/CVERecord?id=CVE-2026-46529

SRPMS

9/core

• evince-44.2-1.1.mga9
• atril-1.26.1-1.2.mga9
• xreader-3.6.0-2.1.mga9