That CVE was announced here: https://kde.org/info/security/advisory-20240531-1.txt For Cauldron, either: - Update plasma-workspace to 6.0.5.1 - Apply patch https://invent.kde.org/plasma/plasma-workspace/-/commit/8047b93defa4be4c6c1864e93c41fddcef2969bb AND ensure the binary "iceauth" is installed - Apply patches https://invent.kde.org/plasma/plasma-workspace/-/commit/8047b93defa4be4c6c1864e93c41fddcef2969bb AND https://invent.kde.org/plasma/plasma-workspace/-/commit/a061b08e90ec5554d5ff8c57ae1218130c76e27a For Mageia 9, either: - Update plasma-workspace to 5.27.11.1 - Apply patch https://invent.kde.org/plasma/plasma-workspace/-/commit/da843d3fdb143ed44094c8e6246cfb8305f6f09f AND ensure the binary "iceauth" is installed - Apply patches https://invent.kde.org/plasma/plasma-workspace/-/commit/da843d3fdb143ed44094c8e6246cfb8305f6f09f AND https://invent.kde.org/plasma/plasma-workspace/-/commit/1d5aa1d27bff87b2d242ed759cfb2ce15a5c3de7
Source RPM: (none) => plasma-workspace-6.0.4-1.mga10.src.rpmCVE: (none) => CVE-2024-36041Whiteboard: (none) => MGA9TOO
Status comment: (none) => Fixed upstream in 6.0.5.1 and 5.27.11.1 and patches available from upstream
Done for Cauldron!
CC: (none) => geiger.david68210Version: Cauldron => 9Whiteboard: MGA9TOO => (none)
Assigning to QA, Packages in 9/Core/Updates_testing: ====================== libcolorcorrect5-5.27.10-1.1.mga9 libkfontinst5-5.27.10-1.1.mga9 libkfontinstui5-5.27.10-1.1.mga9 libkworkspace5-5.27.10-1.1.mga9 libnotificationmanager1-5.27.10-1.1.mga9 libplasma-geolocation-interface5-5.27.10-1.1.mga9 libplasma-workspace-devel-5.27.10-1.1.mga9 libtaskmanager6-5.27.10-1.1.mga9 libweather_ion7-5.27.10-1.1.mga9 lib64colorcorrect5-5.27.10-1.1.mga9 lib64kfontinst5-5.27.10-1.1.mga9 lib64kfontinstui5-5.27.10-1.1.mga9 lib64kworkspace5-5.27.10-1.1.mga9 lib64notificationmanager1-5.27.10-1.1.mga9 lib64plasma-geolocation-interface5-5.27.10-1.1.mga9 lib64plasma-workspace-devel-5.27.10-1.1.mga9 lib64taskmanager6-5.27.10-1.1.mga9 lib64weather_ion7-5.27.10-1.1.mga9 plasma-workspace-5.27.10-1.1.mga9 plasma-workspace-handbook-5.27.10-1.1.mga9.noarch.rpm plasma-workspace-wayland-5.27.10-1.1.mga9 From SRPMS: plasma-workspace-5.27.10-1.1.mga9.src.rpm
Assignee: bugsquad => qa-bugs
Keywords: (none) => advisory
mga9-64 Plasma X11 nvidia-current kernel-desktop While in Plasma desktop, updated what was installed by manual interaction in drakrpm: - lib64colorcorrect5-5.27.10-1.1.mga9.x86_64 - lib64kfontinst5-5.27.10-1.1.mga9.x86_64 - lib64kfontinstui5-5.27.10-1.1.mga9.x86_64 - lib64kworkspace5-5.27.10-1.1.mga9.x86_64 - lib64notificationmanager1-5.27.10-1.1.mga9.x86_64 - lib64plasma-geolocation-interface5-5.27.10-1.1.mga9.x86_64 - lib64taskmanager6-5.27.10-1.1.mga9.x86_64 - lib64weather_ion7-5.27.10-1.1.mga9.x86_64 - plasma-workspace-5.27.10-1.1.mga9.x86_64 - plasma-workspace-wayland-5.27.10-1.1.mga9.x86_64 I selected from menu to reboot. Like often with Plasma updates, there was an irritating pause with timeout. From journal: jun 06 23:51:56 svarten.tribun systemd[465547]: Stopped target graphical-session.target. jun 06 23:51:56 svarten.tribun systemd[465547]: Stopped target graphical-session-pre.target. jun 06 23:53:23 svarten.tribun systemd[465547]: plasma-kwin_x11.service: State 'stop-sigterm' timed out. Killing. jun 06 23:53:23 svarten.tribun systemd[465547]: plasma-kwin_x11.service: Killing process 466200 (kwin_x11) with signal SIGKILL. jun 06 23:53:23 svarten.tribun systemd[465547]: plasma-kwin_x11.service: Killing process 802767 (vsync event mon) with signal SIGKILL. jun 06 23:53:23 svarten.tribun systemd[465547]: plasma-kwin_x11.service: Main process exited, code=killed, status=9/KILL jun 06 23:53:23 svarten.tribun systemd[465547]: plasma-kwin_x11.service: Failed with result 'timeout'. jun 06 23:53:23 svarten.tribun systemd[465547]: Stopped plasma-kwin_x11.service. --- Anyway, running it now, will post again if I see a regression.
CC: (none) => fri
updated without issue: To satisfy dependencies, the following packages are going to be installed: Package Version Release Arch (medium "QA Testing (64-bit)") lib64colorcorrect5 5.27.10 1.1.mga9 x86_64 lib64kfontinst5 5.27.10 1.1.mga9 x86_64 lib64kfontinstui5 5.27.10 1.1.mga9 x86_64 lib64kworkspace5 5.27.10 1.1.mga9 x86_64 lib64notificationmanager1 5.27.10 1.1.mga9 x86_64 lib64plasma-geolocation-inter> 5.27.10 1.1.mga9 x86_64 lib64taskmanager6 5.27.10 1.1.mga9 x86_64 lib64weather_ion7 5.27.10 1.1.mga9 x86_64 plasma-workspace 5.27.10 1.1.mga9 x86_64 plasma-workspace-handbook 5.27.10 1.1.mga9 noarch plasma-workspace-wayland 5.27.10 1.1.mga9 x86_64 448B of additional disk space will be used. 20MB of packages will be retrieved. Proceed with the installation of the 11 packages? (Y/n) logout and in (x11 session) only issue discovered is in the handbook: System Settings => System Settings Handbook => Plasma manual: Documentation not Found
CC: (none) => westel
Installed and tested without issues. Tested for a few hours. Will report if any issue arise. System: Mageia 9, x86_64, Xorg, Plasma DE, AMD Ryzen 5 5600G with Radeon Graphics using amdgpu driver. $ uname -a Linux jupiter 6.6.28-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Wed Apr 17 17:19:36 UTC 2024 x86_64 GNU/Linux $ rpm -qa | grep '5.27.10-1.1.mga9' task-plasma5-minimal-5.27.10-1.1.mga9 lib64kfontinst5-5.27.10-1.1.mga9 lib64kfontinstui5-5.27.10-1.1.mga9 lib64kworkspace5-5.27.10-1.1.mga9 lib64taskmanager6-5.27.10-1.1.mga9 lib64colorcorrect5-5.27.10-1.1.mga9 lib64notificationmanager1-5.27.10-1.1.mga9 lib64weather_ion7-5.27.10-1.1.mga9 lib64plasma-geolocation-interface5-5.27.10-1.1.mga9 plasma-workspace-5.27.10-1.1.mga9
CC: (none) => mageia
MGA9-64 Plasma X11, i5-7500, nvidia Quadro K620 (nvidia-current). Downloaded packages wit qarepo, then updated with drakrpm-update from the command line to see any terminal messages. The following 9 packages are going to be installed: - lib64colorcorrect5-5.27.10-1.1.mga9.x86_64 - lib64kfontinst5-5.27.10-1.1.mga9.x86_64 - lib64kfontinstui5-5.27.10-1.1.mga9.x86_64 - lib64kworkspace5-5.27.10-1.1.mga9.x86_64 - lib64notificationmanager1-5.27.10-1.1.mga9.x86_64 - lib64plasma-geolocation-interface5-5.27.10-1.1.mga9.x86_64 - lib64taskmanager6-5.27.10-1.1.mga9.x86_64 - lib64weather_ion7-5.27.10-1.1.mga9.x86_64 - plasma-workspace-5.27.10-1.1.mga9.x86_64 No installation issues. There was no "timeout" pause, perhaps a very brief blank screen of less than a second, and no untoward messages in the terminal. I rebooted, and so far haven't seen any issues to report.
CC: (none) => andrewsfarm
MGA9-64 Plasma Wayland on HP-Pavillion. No installation issues. Rebooted, and no apparent issues. I can only confirm the missing manual as Ben reports in Comment 4. IMHO that should not prohibit the OK?
CC: (none) => herman.viaene
The handbook issue isn't new. I just checked my existing install, and it has the same thing. At first, the plasma-workspace manual had not been installed, but even after installing it, I get the same thing. And there are others. The systemsettings handbook had not been installed, but even after installing that, some applications had handbooks but some don't. I think the issue comes from handbooks/documentation scattered all over the repos, coupled with several not being on the install isos because of lack of room. I've noticed a couple of packages that, if installed from the repos require a handbook, but don't if installed from the iso. Go to drakrpm and look at all the packages under "Documentation" that AREN'T installed on your system. It should not hold back the update.
RH mageia 9 i586 LC_ALL=C urpmi --auto --auto-update medium "QA Testing (32-bit)" is up-to-date medium "Core Release (distrib1)" is up-to-date medium "Core Updates (distrib3)" is up-to-date medium "Nonfree Release (distrib11)" is up-to-date medium "Nonfree Updates (distrib13)" is up-to-date medium "Tainted Release (distrib21)" is up-to-date medium "Tainted Updates (distrib23)" is up-to-date installing libcolorcorrect5-5.27.10-1.1.mga9.i586.rpm libkfontinstui5-5.27.10-1.1.mga9.i586.rpm libplasma-geolocation-interface5-5.27.10-1.1.mga9.i586.rpm libweather_ion7-5.27.10-1.1.mga9.i586.rpm libnotificationmanager1-5.27.10-1.1.mga9.i586.rpm plasma-workspace-5.27.10-1.1.mga9.i586.rpm libtaskmanager6-5.27.10-1.1.mga9.i586.rpm libkworkspace5-5.27.10-1.1.mga9.i586.rpm libkfontinst5-5.27.10-1.1.mga9.i586.rpm from //home/katnatek/qa-testing/i586 Preparing... ################################################################ 1/9: libkfontinst5 ################################################################ 2/9: libkfontinstui5 ################################################################ 3/9: libkworkspace5 ################################################################ 4/9: libtaskmanager6 ################################################################ 5/9: libnotificationmanager1 ################################################################ 6/9: libweather_ion7 ################################################################ 7/9: libplasma-geolocation-interface5 ################################################################ 8/9: libcolorcorrect5 ################################################################ 9/9: plasma-workspace ################################################################ 1/9: removing plasma-workspace-5.27.10-1.mga9.i586 ################################################################ 2/9: removing libkfontinstui5-5.27.10-1.mga9.i586 ################################################################ 3/9: removing libkfontinst5-5.27.10-1.mga9.i586 ################################################################ 4/9: removing libcolorcorrect5-5.27.10-1.mga9.i586 ################################################################ 5/9: removing libkworkspace5-5.27.10-1.mga9.i586 ################################################################ 6/9: removing libnotificationmanager1-5.27.10-1.mga9.i586 ################################################################ 7/9: removing libplasma-geolocation-interface5-5.27.10-1.mga9.i586 ################################################################ 8/9: removing libtaskmanager6-5.27.10-1.mga9.i586 ################################################################ 9/9: removing libweather_ion7-5.27.10-1.mga9.i586 ################################################################ Reboot, Start Plasma session Not issues to report
I do think it would be a good idea to open up another bug on the issue. My suspicion is that systemsettings is looking for the plasma documentation in the wrong place, but that won't be solved with this bug.
MGA9-64 on an HP Pavilion. No installation issues, and I've been using it for a half hour or so without issues. I believe this is good to go. Validating.
CC: (none) => sysadmin-bugsWhiteboard: (none) => MGA9-64-OK MGA9-32-OKKeywords: (none) => validated_update
RH mageia 9 x86_64 Relevant part of journalctl |grep RPM jun 07 07:16:21 jgrey.phoenix [RPM][46628]: install plasma-workspace-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64kfontinst5-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64kworkspace5-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64kfontinstui5-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64taskmanager6-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64plasma-geolocation-interface5-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64notificationmanager1-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64weather_ion7-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install lib64colorcorrect5-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install plasma-workspace-5.27.10-1.1.mga9.x86_64: success jun 07 07:16:23 jgrey.phoenix [RPM][46628]: install plasma-workspace-wayland-5.27.10-1.1.mga9.x86_64: success Reboot , Start Plasma X11 session without issues
RH mageia 9 x86_64 Logged out from Plasma X11 and Log in Plasma Wayland without issues
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2024-0214.html
Status: NEW => RESOLVEDResolution: (none) => FIXED
It seems this update broke session restore https://forums.mageia.org/en/viewtopic.php?t=15378
I think some more info is required. I have just logged out from, and back in to, a plasma session. active applications before logout: ktorrent, konversation, kwrite, konsole, dolphin, thunderbird, firefox auto-restarted applications after login: ktorrent, konversation, kwrite, konsole, dolphin, thunderbird, firefox. regards
Long ago, in my Mandrake/Mandriva days, wiser Usenet heads than mine advised that many issues could be avoided if KDE/Plasma was set to open into an empty session. So, that's what I've always done, and I generally don't even think about it. But now, I changed the setting, started Firefox, Thunderbird, Kwrite, Kcalc, Dolphin, and the K system monitor. Then logged out and back in. Firefox and Thunderbird started. That's it. So, I can confirm it. But we can't fix it here. We need a new bug report, preferably from the users in the forum that have experience with it working before.
Link from our forum: it seems more distros are affected https://bugzilla.suse.com/show_bug.cgi?id=1225774#c5
I opened Bug 33279 - Plasma desktop session is not restored