Advisories ยป MGASA-2026-0262

Updated libidn packages fix security vulnerability

Publication date: 18 Jul 2026
Modification date: 18 Jul 2026
Type: security
Affected Mageia releases : 10 , 9
CVE: CVE-2026-57053

Description

GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized
memory in the ToUnicode APIs because of mishandling in
idna_to_unicode_internal. The affected code is not present in libidn2.
(CVE-2026-57053)
                

References

SRPMS

10/core

9/core