References: https://www.openwall.com/lists/oss-security/2026/03/20/4 https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r
Source RPM: (none) => python-pyasn1-0.6.1-3.mga10.src.rpm, python-pyasn1-0.4.8-6.1.mga9.src.rpmCVE: (none) => CVE-2026-30922Whiteboard: (none) => MGA9TOOStatus comment: (none) => Fixed upstream in 0.6.3Flags: (none) => affects_mga9+
For Cauldron, I asked for a freeze move.
Flags: affects_mga9+ => (none)Whiteboard: MGA9TOO => (none)Source RPM: python-pyasn1-0.6.1-3.mga10.src.rpm, python-pyasn1-0.4.8-6.1.mga9.src.rpm => python-pyasn1-0.4.8-6.1.mga9.src.rpmVersion: Cauldron => 9
Just a version update.
Assignee: bugsquad => python
Ubuntu has issued an advisory on March 30: https://ubuntu.com/security/notices/USN-8129-1
Suggested advisory: ======================== The updated package fixes a security vulnerability: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion. (CVE-2026-30922) References: https://www.openwall.com/lists/oss-security/2026/03/20/4 https://github.com/pyasn1/pyasn1/security/advisories/GHSA-jr27-m4p2-rc6r https://ubuntu.com/security/notices/USN-8129-1 ======================== Updated package in core/updates_testing: ======================== python3-pyasn1-0.4.8-6.2.mga9 from SRPM: python-pyasn1-0.4.8-6.2.mga9.src.rpm
Assignee: python => qa-bugsStatus comment: Fixed upstream in 0.6.3 => (none)Status: NEW => ASSIGNED
MGA9-64 server Plasma Wayland on Compaq H000SB. No installation issues. Ref bug 35057, tested deluge, works OK.
Whiteboard: (none) => MGA9-64-OKFlags: (none) => test_passed_mga9_64+CC: (none) => herman.viaene
Validating.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2026-0087.html
Resolution: (none) => FIXEDStatus: ASSIGNED => RESOLVED