openSUSE has issued an advisory on February 21: https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/6L3CRKPOLSYHPHW4QETC25D65CTE33EO/ Fix: https://github.com/radareorg/radare2/commit/c6c772d2eab692ce7ada5a4227afd50c355ad545
Whiteboard: (none) => MGA9TOOSource RPM: (none) => radare2-5.9.8-1.mga10.src.rpm, radare2-5.8.8-1.4.mga9.src.rpmCVE: (none) => CVE-2025-1378Status comment: (none) => Patch available from upstream and openSUSE
Thanks again for the patch ref. DavidG has already updated Cauldron with it; remains Mageia9. So assigning this to you.
Assignee: bugsquad => geiger.david68210
Assigning to QA, Packages in 9/Core/Updates_testing: ====================== libradare2-devel-5.8.8-1.5.mga9 libradare2_5.8.8-5.8.8-1.5.mga9 lib64radare2-devel-5.8.8-1.5.mga9 lib64radare2_5.8.8-5.8.8-1.5.mga9 radare2-5.8.8-1.5.mga9.x86_64.rpm From SRPMS radare2-5.8.8-1.5.mga9.src.rpm
Version: Cauldron => 9Assignee: geiger.david68210 => qa-bugsWhiteboard: MGA9TOO => (none)
CC: (none) => mageia
MGA9-64 Plasma Wayland on Compaq H000SB No installation issues. Ref bug 33853 for testing: $ rabin2 -I firefox.exe arch x86 baddr 0x400000 binsz 517072 bintype pe bits 32 canary true retguard false class PE32 cmp.csum 0x0008c46c compiled Thu Jun 21 15:53:30 2018 crypto false dbg_file c:\builds\moz2_slave\m-esr52-w32-000000000000000000\build\src\obj-firefox\browser\app\firefox.pdb endian little havecode true hdr.csum 0x0008c46c guid CA62060F00F14226994F5C4935BE72192 laddr 0x0 lang msvc linenum false lsyms false machine i386 nx true os windows overlay true cc cdecl pic true relocs false signed true sanitize false static false stripped false subsys Windows GUI va true $ rax2 0011000011111111d 12543 $ rasm2 ret c3 $ radare2 firefox.exe [0x00405eed]> aa INFO: Analyze all flags starting with sym. and entry0 (aa) INFO: Analyze all functions arguments/locals (afva@@@F) [0x00405eed]> s/ fire Searching 4 bytes in [0x480e00-0x481000] hits: 0 Searching 4 bytes in [0x47f000-0x480e00] hits: 0 Searching 4 bytes in [0x47ea00-0x47f000] hits: 0 Searching 4 bytes in [0x43d000-0x47ea00] hits: 0 Searching 4 bytes in [0x43c200-0x43d000] hits: 0 Searching 4 bytes in [0x43c000-0x43c200] hits: 0 Searching 4 bytes in [0x43a200-0x43c000] hits: 0 Searching 4 bytes in [0x43a000-0x43a200] hits: 0 Searching 4 bytes in [0x439c00-0x43a000] hits: 0 Searching 4 bytes in [0x422000-0x439c00] [# ]0x00423028 hit0_0 .MozillaFirefoxfirefox52.9.02018. I have no clue what PC LX has been testing, so I don't know whether a go is possible here.
CC: (none) => herman.viaene
Keywords: (none) => advisory
RH x86_64 installing lib64radare2_5.8.8-5.8.8-1.5.mga9.x86_64.rpm radare2-5.8.8-1.5.mga9.x86_64.rpm from //home/katnatek/qa-testing/x86_64 Preparing... ################################################################################################## 1/2: lib64radare2_5.8.8 ################################################################################################## 2/2: radare2 ################################################################################################## 1/2: removing radare2-5.8.8-1.4.mga9.x86_64 ################################################################################################## 2/2: removing lib64radare2_5.8.8-5.8.8-1.4.mga9.x86_64 ################################################################################################## Reference bug#32521 comment#7 / Bug#33534 comment#3 rabin2 -I "/home/katnatek/windows/Program Files (x86)/K-Lite Codec Pack/MPC-HC64/mpc-hc64.exe" arch x86 baddr 0x140000000 binsz 9022976 bintype pe bits 64 canary true retguard false class PE32+ cmp.csum 0x008a22c3 compiled Thu Nov 29 16:00:08 2018 crypto false endian little havecode true hdr.csum 0x008a22c3 laddr 0x0 lang c linenum false lsyms false machine AMD 64 nx true os windows overlay false cc ms pic true relocs false signed false sanitize false static false stripped false subsys Windows GUI va true radare2 "/home/katnatek/windows/Program Files (x86)/K-Lite Codec Pack/MPC-HC64/mpc-hc64.exe" [0x14050380c]> aa INFO: Analyze all flags starting with sym. and entry0 (aa) INFO: Analyze all functions arguments/locals (afva@@@F) [0x14050380c]> s/ mpc Searching 3 bytes in [0x1408ef400-0x1408f0000] hits: 0 Searching 3 bytes in [0x1408d2000-0x1408ef400] hits: 0 Searching 3 bytes in [0x1408d1c00-0x1408d2000] hits: 0 Searching 3 bytes in [0x14084c000-0x1408d1c00] [# ]0x140882d8f hit0_0 . <!-- The mpchc_np id is used. [0x140882d8f]> Reference bug#29163 comment#18 / bug#32521 comment#8 rafind2 -s "text" /bin/kwrite | wc -l 1 V command output is the described
Whiteboard: (none) => MGA9-64-OKCC: (none) => andrewsfarm
Installed and tested without issues. Tested using the Cutter GUI. Tested on several binaries. All OK. System: Mageia 9, x86_64, Plasma DE, AMD Ryzen 5 5600G with Radeon Graphics using amdgpu driver. $ uname -a Linux jupiter 6.6.79-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Fri Feb 21 17:45:39 UTC 2025 x86_64 GNU/Linux $ rpm -qa | grep radare2 | sort lib64radare2_5.8.8-5.8.8-1.4.mga9 radare2-5.8.8-1.4.mga9 radare2-cutter-2.2.1-2.mga9
Validating.
CC: (none) => sysadmin-bugsKeywords: (none) => validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2025-0083.html
Status: NEW => RESOLVEDResolution: (none) => FIXED