Updated 7zip packages fix a security vulnerability
Publication date: 09 Jul 2026Modification date: 09 Jul 2026
Type: security
Affected Mageia releases : 10
CVE: CVE-2026-48095
Description
7-Zip has a heap buffer overflow via NTFS compressed stream buffer
under-allocation. (CVE-2026-48095)
References
- https://bugs.mageia.org/show_bug.cgi?id=35647
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/MKEOLTFHUWP7BQ2ILOTOFFTHHM3IADU3/
- https://securitylab.github.com/advisories/GHSL-2026-140_7-Zip/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BAJUM226JIQJF4PYM6EWAVY5M7POD652/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHMTNNKWIDXZP5647A5C27UDXK33KG4G/
- https://www.cve.org/CVERecord?id=CVE-2026-48095
SRPMS
10/core
- 7zip-26.02-1.mga10