Reference: https://www.openwall.com/lists/oss-security/2026/01/07/1 CVE-2025-69195 was introduced 2.1.0 so it does not affect Mageia 9.
CVE: (none) => CVE-2025-69194Source RPM: (none) => wget2-2.0.1-1.mga9.src.rpm
Suggested advisory: ======================== The updated packages fix a security vulnerability: Arbitrary File Write via Metalink Path Traversal in GNU Wget2. (CVE-2025-69194) References: https://www.openwall.com/lists/oss-security/2026/01/07/1 ======================== Updated packages in core/updates_testing: ======================== lib(64)wget-devel-2.0.1-1.1.mga9 lib(64)wget1-2.0.1-1.1.mga9 wget2-2.0.1-1.1.mga9 from SRPM: wget2-2.0.1-1.1.mga9.src.rpm
Assignee: bugsquad => qa-bugsStatus: NEW => ASSIGNED
MGA9-64 server Plasma Wayland on Compaq H000SB. No installation issues. No previous update, so try the command. $ wget2 www.hermanviaene.be/donderdag.html [0] Downloading 'http://www.hermanviaene.be/donderdag.html' ... Saving 'donderdag.html.1' HTTP response 200 OK [http://www.hermanviaene.be/donderdag.html] Downloaded file displays correctly in Firefox. $ wget2 -o testwget2.html www.hermanviaene.be/donderdag.html no feedback, but output file reads: [0] Downloading 'http://www.hermanviaene.be/donderdag.html' ... Saving 'donderdag.html' HTTP response 200 OK [http://www.hermanviaene.be/donderdag.html] Which make sense to me. Good enough.
Whiteboard: (none) => MGA9-64-OKCC: (none) => herman.viaene
Keywords: (none) => advisory
Validating.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2026-0002.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED