Advisories ยป MGASA-2026-0263

Updated perl-Config-IniFiles package fixes a security vulnerability

Publication date: 18 Jul 2026
Modification date: 18 Jul 2026
Type: security
Affected Mageia releases : 10 , 9
CVE: CVE-2026-11527

Description

The updated package fixes a security vulnerability:
Config::IniFiles versions before 3.001000 for Perl allow OS command
injection and file overwrite via a 2-arg open() of the -file argument in
_make_filehandle. (CVE-2026-11527)
                

References

SRPMS

10/core

9/core