stb-0^20251025gitf1c79c0-2.fc43
FEDORA-2025-55bbd18c79
Packages in this update:
- stb-0^20251025gitf1c79c0-2.fc43
Patch two newly-reported memory-safety bugs in stb_image:
Aggregator
next-20251125: linux-next
Version:next-20251125 (linux-next)
Released:2025-11-25
DSA-6061-1 tryton-sao - security update
DSA-6062-1 pdfminer - security update
USN-7888-1: MuPDF vulnerabilities
It was discovered that MuPDF could be made to divide by zero. An attacker
could possibly use this issue to cause a denial of service.
(CVE-2023-51103, CVE-2023-51104, CVE-2023-51105, CVE-2023-51106)
It was discovered that MuPDF incorrectly handled memory under certain
circumstances, which could lead to a NULL pointer dereference. An
attacker could potentially use this issue to cause a denial of service.
(CVE-2024-46657)
It was discovered that MuPDF could enter an infinite recursion when
parsing certain PDF files. An attacker could possibly use this issue to
cause a denial of service. (CVE-2025-46206)
openbao-2.4.4-1.fc42
FEDORA-2025-6b2336ec55
Packages in this update:
- openbao-2.4.4-1.fc42
update to upstream 2.4.4, which fixed CVE-2025-64761
Adds hsm tag.
The fedora-42 build was done with golang-1.24.10 which fixed CVE-2025-58183.
openbao-2.4.4-1.fc43
FEDORA-2025-c7f4367479
Packages in this update:
- openbao-2.4.4-1.fc43
update to upstream 2.4.4, fixing CVE-2025-64761.
Adds hsm tag.
The fedora-43 build was done with golang-1.25.4 which fixed CVE-2025-58189, CVE-2025-58188, CVE-2025-61725, CVE-2025-61723, CVE-2025-58185, and CVE-2025-58183.
openbao-2.4.4-1.el10_1
FEDORA-EPEL-2025-001ad6132c
Packages in this update:
- openbao-2.4.4-1.el10_1
update to upstream 2.4.4 which fixed CVE-2025-64761
openbao-2.4.4-1.el9
FEDORA-EPEL-2025-054eae36ef
Packages in this update:
- openbao-2.4.4-1.el9
update to upstream 2.4.4 which fixed CVE-2025-64761
Adds hsm tag.
openbao-2.4.4-1.el10_2
FEDORA-EPEL-2025-fae772942c
Packages in this update:
- openbao-2.4.4-1.el10_2
update to upstream 2.4.4 which fixed CVE-2025-64761
Rebuild to add hsm tag.
openbao-2.4.4-1.fc41
FEDORA-2025-45a7dd8f10
Packages in this update:
- openbao-2.4.4-1.fc41
update to upstream 2.4.4, which fixed CVE-2025-64761
Adds hsm tag.
The fedora-41 build was done with golang-1.24.10 which fixed CVE-2025-58189, CVE-2025-61725, CVE-2025-61723, CVE-2025-58185, and CVE-2025-58183.
openbao-2.4.4-1.el8
FEDORA-EPEL-2025-0739431e45
Packages in this update:
- openbao-2.4.4-1.el8
update to upstream 2.4.4 which fixed CVE-2025-64761
Adds hsm tag.
python-mkdocs-include-markdown-plugin-7.2.0-1.fc42
FEDORA-2025-cb26113de5
Packages in this update:
- python-mkdocs-include-markdown-plugin-7.2.0-1.fc42
- Add new argument order to sort multiple inclusions.
- Escape substitution placeholders to prevent malformed output in edge cases. (CVE-2025-59940)
python-mkdocs-include-markdown-plugin-7.2.0-1.fc43
FEDORA-2025-1b1bb708af
Packages in this update:
- python-mkdocs-include-markdown-plugin-7.2.0-1.fc43
- Add new argument order to sort multiple inclusions.
- Escape substitution placeholders to prevent malformed output in edge cases. (CVE-2025-59940)
python-mkdocs-include-markdown-plugin-7.2.0-1.fc44
FEDORA-2025-0ec38c29fa
Packages in this update:
- python-mkdocs-include-markdown-plugin-7.2.0-1.fc44
Automatic update for python-mkdocs-include-markdown-plugin-7.2.0-1.fc44.
Changelog * Mon Nov 24 2025 Michel Lind <salimma@fedoraproject.org> - 7.2.0-1 - Update to 7.2.0 - Resolves: rhbz#2344045 - 7.1.8 fixes CVE-2025-59940; Resolves: rhbz#2400521rclone-1.72.0-1.el10_2
FEDORA-EPEL-2025-c7b9b07dd3
Packages in this update:
- rclone-1.72.0-1.el10_2
Update to 1.72.0
rclone-1.72.0-1.el10_1
FEDORA-EPEL-2025-b5821dbb11
Packages in this update:
- rclone-1.72.0-1.el10_1
Update to 1.72.0
rclone-1.72.0-1.fc42
FEDORA-2025-5f73919942
Packages in this update:
- rclone-1.72.0-1.fc42
Update to 1.72.0
rclone-1.72.0-1.fc43
FEDORA-2025-5e299f890a
Packages in this update:
- rclone-1.72.0-1.fc43
Update to 1.72.0
USN-7887-1: Linux kernel (Raspberry Pi Real-time) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- PowerPC architecture;
- x86 architecture;
- ACPI drivers;
- Ublk userspace block driver;
- Clock framework and drivers;
- EDAC drivers;
- GPU drivers;
- IIO subsystem;
- InfiniBand drivers;
- Media drivers;
- MemoryStick subsystem;
- Network drivers;
- NTB driver;
- PCI subsystem;
- Remote Processor subsystem;
- Thermal drivers;
- Virtio Host (VHOST) subsystem;
- 9P distributed file system;
- File systems infrastructure;
- JFS file system;
- Network file system (NFS) server daemon;
- NTFS3 file system;
- SMB network file system;
- Memory management;
- RDMA verbs API;
- Kernel fork() syscall;
- Tracing infrastructure;
- Watch queue notification mechanism;
- Asynchronous Transfer Mode (ATM) subsystem;
- Networking core;
- IPv4 networking;
- IPv6 networking;
- Netfilter;
- Network traffic control;
- SCTP protocol;
- TLS protocol;
- SoC Audio for Freescale CPUs drivers;
(CVE-2023-53034, CVE-2024-58092, CVE-2025-22018, CVE-2025-22019,
CVE-2025-22020, CVE-2025-22021, CVE-2025-22025, CVE-2025-22027,
CVE-2025-22028, CVE-2025-22033, CVE-2025-22035, CVE-2025-22036,
CVE-2025-22038, CVE-2025-22039, CVE-2025-22040, CVE-2025-22041,
CVE-2025-22042, CVE-2025-22044, CVE-2025-22045, CVE-2025-22047,
CVE-2025-22050, CVE-2025-22053, CVE-2025-22054, CVE-2025-22055,
CVE-2025-22056, CVE-2025-22057, CVE-2025-22058, CVE-2025-22060,
CVE-2025-22062, CVE-2025-22063, CVE-2025-22064, CVE-2025-22065,
CVE-2025-22066, CVE-2025-22068, CVE-2025-22070, CVE-2025-22071,
CVE-2025-22072, CVE-2025-22073, CVE-2025-22075, CVE-2025-22079,
CVE-2025-22080, CVE-2025-22081, CVE-2025-22083, CVE-2025-22086,
CVE-2025-22089, CVE-2025-22090, CVE-2025-22095, CVE-2025-22097,
CVE-2025-23136, CVE-2025-23138, CVE-2025-37937, CVE-2025-38152,
CVE-2025-38240, CVE-2025-38575, CVE-2025-38637, CVE-2025-39682,
CVE-2025-39728, CVE-2025-39735, CVE-2025-40114, CVE-2025-40157)