libpcap-1.10.6-1.fc43
FEDORA-2026-274010c760
Packages in this update:
- libpcap-1.10.6-1.fc43
New version 1.10.6
Aggregator
ntfs-3g-system-compression-1.1-1.el8
FEDORA-EPEL-2026-315f806da8
Packages in this update:
- ntfs-3g-system-compression-1.1-1.el8
Update to v1.1
USN-7941-1: WebKitGTK vulnerabilities
Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.
chezmoi-2.69.0-1.fc43
FEDORA-2026-004192d79d
Packages in this update:
- chezmoi-2.69.0-1.fc43
Update to 2.69.0
composer-2.9.3-1.fc42
FEDORA-2026-13b4dbe546
Packages in this update:
- composer-2.9.3-1.fc42
- Security: Fixed ANSI sequence injection (GHSA-59pp-r3rg-353g / CVE-2025-67746)
- Fixed COMPOSER_NO_SECURITY_BLOCKING env var not being respected for updates done via the install command, and added --no-security-blocking flag to install as well (#12677)
- Fixed update --lock / update mirrors not working when locked packages contain vulnerabilities (#12645)
- Fixed client-certificate authentication implementation (#12667)
- Fixed php-ext schema not being validated in ValidatingArrayLoader (#12694)
- Fixed crash when --bump-after-update is used and the lock file is disabled (#12660)
- Fixed support for SecureTransport + LibreSSL on macOS (#12615)
- Fixed display of reasons for why advisories are ignored (#12668)
- Fixed compatibility issues when git has log.showSignature enabled (#12666)
- Fixed curl downloader not retrying when a timeout (err 28) failure occurs (#12662)
- Fixed EventDispatcher requiring a full Composer instance to function (#12629)
composer-2.9.3-1.fc43
FEDORA-2026-0b03072979
Packages in this update:
- composer-2.9.3-1.fc43
- Security: Fixed ANSI sequence injection (GHSA-59pp-r3rg-353g / CVE-2025-67746)
- Fixed COMPOSER_NO_SECURITY_BLOCKING env var not being respected for updates done via the install command, and added --no-security-blocking flag to install as well (#12677)
- Fixed update --lock / update mirrors not working when locked packages contain vulnerabilities (#12645)
- Fixed client-certificate authentication implementation (#12667)
- Fixed php-ext schema not being validated in ValidatingArrayLoader (#12694)
- Fixed crash when --bump-after-update is used and the lock file is disabled (#12660)
- Fixed support for SecureTransport + LibreSSL on macOS (#12615)
- Fixed display of reasons for why advisories are ignored (#12668)
- Fixed compatibility issues when git has log.showSignature enabled (#12666)
- Fixed curl downloader not retrying when a timeout (err 28) failure occurs (#12662)
- Fixed EventDispatcher requiring a full Composer instance to function (#12629)
composer-2.9.3-1.el9
FEDORA-EPEL-2026-13503a8eac
Packages in this update:
- composer-2.9.3-1.el9
- Security: Fixed ANSI sequence injection (GHSA-59pp-r3rg-353g / CVE-2025-67746)
- Fixed COMPOSER_NO_SECURITY_BLOCKING env var not being respected for updates done via the install command, and added --no-security-blocking flag to install as well (#12677)
- Fixed update --lock / update mirrors not working when locked packages contain vulnerabilities (#12645)
- Fixed client-certificate authentication implementation (#12667)
- Fixed php-ext schema not being validated in ValidatingArrayLoader (#12694)
- Fixed crash when --bump-after-update is used and the lock file is disabled (#12660)
- Fixed support for SecureTransport + LibreSSL on macOS (#12615)
- Fixed display of reasons for why advisories are ignored (#12668)
- Fixed compatibility issues when git has log.showSignature enabled (#12666)
- Fixed curl downloader not retrying when a timeout (err 28) failure occurs (#12662)
- Fixed EventDispatcher requiring a full Composer instance to function (#12629)
composer-2.9.3-1.el10_2
FEDORA-EPEL-2026-bc7502f16e
Packages in this update:
- composer-2.9.3-1.el10_2
- Security: Fixed ANSI sequence injection (GHSA-59pp-r3rg-353g / CVE-2025-67746)
- Fixed COMPOSER_NO_SECURITY_BLOCKING env var not being respected for updates done via the install command, and added --no-security-blocking flag to install as well (#12677)
- Fixed update --lock / update mirrors not working when locked packages contain vulnerabilities (#12645)
- Fixed client-certificate authentication implementation (#12667)
- Fixed php-ext schema not being validated in ValidatingArrayLoader (#12694)
- Fixed crash when --bump-after-update is used and the lock file is disabled (#12660)
- Fixed support for SecureTransport + LibreSSL on macOS (#12615)
- Fixed display of reasons for why advisories are ignored (#12668)
- Fixed compatibility issues when git has log.showSignature enabled (#12666)
- Fixed curl downloader not retrying when a timeout (err 28) failure occurs (#12662)
- Fixed EventDispatcher requiring a full Composer instance to function (#12629)
composer-2.9.3-1.el10_1
FEDORA-EPEL-2026-9b76de53c0
Packages in this update:
- composer-2.9.3-1.el10_1
- Security: Fixed ANSI sequence injection (GHSA-59pp-r3rg-353g / CVE-2025-67746)
- Fixed COMPOSER_NO_SECURITY_BLOCKING env var not being respected for updates done via the install command, and added --no-security-blocking flag to install as well (#12677)
- Fixed update --lock / update mirrors not working when locked packages contain vulnerabilities (#12645)
- Fixed client-certificate authentication implementation (#12667)
- Fixed php-ext schema not being validated in ValidatingArrayLoader (#12694)
- Fixed crash when --bump-after-update is used and the lock file is disabled (#12660)
- Fixed support for SecureTransport + LibreSSL on macOS (#12615)
- Fixed display of reasons for why advisories are ignored (#12668)
- Fixed compatibility issues when git has log.showSignature enabled (#12666)
- Fixed curl downloader not retrying when a timeout (err 28) failure occurs (#12662)
- Fixed EventDispatcher requiring a full Composer instance to function (#12629)
complyctl-0.1.2-1.fc43
FEDORA-2026-aa8453cfd0
Packages in this update:
- complyctl-0.1.2-1.fc43
Update to Upstream version 0.1.2 - https://github.com/complytime/complyctl/releases/tag/v0.1.2
wasmedge-0.14.0-4.el8
FEDORA-EPEL-2026-db1e2d26c5
Packages in this update:
- wasmedge-0.14.0-4.el8
Backport fix for CVE-2025-22921
wasmedge-0.14.0-4.el9
FEDORA-EPEL-2026-151ddbd53b
Packages in this update:
- wasmedge-0.14.0-4.el9
Backport fix for CVE-2025-22921
next-20260105: linux-next
Version:next-20260105 (linux-next)
Released:2026-01-05
DSA-6094-1 libsodium - security update
6.19-rc4: mainline
Version:6.19-rc4 (mainline)
Released:2026-01-04
Source:linux-6.19-rc4.tar.gz
Patch:full (incremental)
DSA-6093-1 gimp - security update
coturn-4.7.0-4.el8
FEDORA-EPEL-2026-1d01413ac3
Packages in this update:
- coturn-4.7.0-4.el8
- Backport upstream patches for CVE-2025-69217 (#2425955)
coturn-4.7.0-4.el9
FEDORA-EPEL-2026-082297644a
Packages in this update:
- coturn-4.7.0-4.el9
- Backport upstream patches for CVE-2025-69217 (#2425955)
coturn-4.7.0-4.el10_1
FEDORA-EPEL-2026-1d10e103c9
Packages in this update:
- coturn-4.7.0-4.el10_1
- Backport upstream patches for CVE-2025-69217 (#2425955)
coturn-4.7.0-4.el10_2
FEDORA-EPEL-2026-d03f559c4f
Packages in this update:
- coturn-4.7.0-4.el10_2
- Backport upstream patches for CVE-2025-69217 (#2425955)