Aggregator

It was discovered that systemd incorrectly handled certain cgroup paths. A local attacker could possibly use this issue to cause systemd to crash, resulting in a denial of service. (CVE-2026-29111) It was discovered that the systemd udev component incorrectly handled certain fields received from the kernel. An attacker with a malicious device could possibly use this issue to execute arbitrary code as an administrator (root).

FEDORA-2026-06ba6ec743 Packages in this update:

• rust-sccache-0.13.0-4.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-EPEL-2026-28d5610c3e Packages in this update:

• rust-cargo-vendor-filterer-0.5.18-4.el10_1

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-1c54435571 Packages in this update:

• rust-ingredients-0.2.2-3.fc42

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-0b2e9c67ef Packages in this update:

• insight-18.0.50.20260306-2.fc43

Update description:

Fix CVE-2026-4647.

FEDORA-2026-62cea4650e Packages in this update:

• insight-18.0.50.20260306-2.fc42

Update description:

Fix CVE-2026-4647.

FEDORA-2026-d79ba951dd Packages in this update:

• insight-18.0.50.20260306-2.fc44

Update description:

Fix CVE-2026-4647.

FEDORA-EPEL-2026-2df1a76a8a Packages in this update:

• rust-cargo-c-0.10.19-2.el10_2

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

Version:next-20260323 (linux-next) Released:2026-03-23

FEDORA-EPEL-2026-47a418e671 Packages in this update:

• rust-cargo-c-0.10.19-2.el10_3

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-d0a08cfd21 Packages in this update:

• rust-ingredients-0.2.2-3.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-EPEL-2026-03e15bbc02 Packages in this update:

• rust-cargo-vendor-filterer-0.5.18-4.el10_2

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-EPEL-2026-d8dda8ca06 Packages in this update:

• rust-resctl-bench-2.2.5-12.el9

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-dd42661781 Packages in this update:

• rust-resctl-bench-2.2.5-12.fc42

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-12baf239f8 Packages in this update:

• rust-resctl-bench-2.2.5-12.fc44

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-d7252cbfc9 Packages in this update:

• rust-resctl-bench-2.2.5-12.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

Yechan Bae discovered that sized-chunks did not properly validate array size when constructing Chunk. An attacker could possibly use these issues to cause out-of-bounds access, leading to memory corruption or undefined behavior. (CVE-2020-25791, CVE-2020-25792, CVE-2020-25793) Yechan Bae discovered that sized-chunks had a memory safety issue in the clone implementation when a panic occurs. An attacker could possibly use this issue to cause improper memory handling, leading to memory corruption or a denial of service. (CVE-2020-25794) Yechan Bae discovered that sized-chunks could create unaligned references in the InlineArray implementation for types with strict alignment requirements. An attacker could possibly use this issue to cause undefined behavior, leading to memory corruption or a denial of service. (CVE-2020-25796)

FEDORA-2026-ae897eb928 Packages in this update:

• chromium-146.0.7680.153-1.fc43

Update description:

Update to 146.0.7680.153

* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLE

FEDORA-2026-920df14fb5 Packages in this update:

• chromium-146.0.7680.153-1.fc44

Update description:

Update to 146.0.7680.153

* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLE

FEDORA-2026-3bed78d162 Packages in this update:

• chromium-146.0.7680.153-1.fc42

Update description:

Update to 146.0.7680.153

* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLE