Aggregator

USN-8098-9: Linux kernel (IBM) vulnerabilities

Ubuntu Security Advisories
1 week ago
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)

python-cryptography-46.0.6-1.fc44

Fedora Security Advisories
1 week ago
FEDORA-2026-2423902e8b Packages in this update:
  • python-cryptography-46.0.6-1.fc44
Update description:

Update to v46.0.6

This includes a single fix for security issue: * **SECURITY ISSUE**: Fixed a bug where name constraints were not applied to peer names during verification when the leaf certificate contains a wildcard DNS SAN. Ordinary X.509 topologies are not affected by this bug, including those used by the Web PKI. Credit to **Oleh Konko (1seal)** for reporting the issue. **CVE-2026-34073**

xen-4.21.1-1.fc44

Fedora Security Advisories
1 week ago
FEDORA-2026-f884fd0313 Packages in this update:
  • xen-4.21.1-1.fc44
Update description:

update to xen 4.21.1

Use after free of paging structures in EPT [XSA-480, CVE-2026-23554] Xenstored DoS by unprivileged domain [XSA-481, CVE-2026-23555]