Aggregator

dotnet9.0-9.0.111-1.fc43

Fedora Security Advisories
2 weeks 4 days ago
FEDORA-2025-08b0c5ec40 Packages in this update:
  • dotnet9.0-9.0.111-1.fc43
Update description:

This is the October 2025 release of .NET 9, updating the SDK to version 9.0.111 and runtime to version to 9.0.10.

Release Notes:

This is the September 2025 release of .NET 9.

Release Notes:

USN-7853-2: Linux kernel (FIPS) vulnerabilities

Ubuntu Security Advisories
2 weeks 4 days ago
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS. (CVE-2025-40300) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - DMA engine subsystem; - GPU drivers; - HSI subsystem; - Ethernet team driver; - Ext4 file system; - Timer subsystem; - DCCP (Datagram Congestion Control Protocol); - IPv6 networking; - NET/ROM layer; - SCTP protocol; - USB sound devices; (CVE-2023-52574, CVE-2023-52650, CVE-2024-41006, CVE-2024-50006, CVE-2024-50299, CVE-2024-53124, CVE-2024-53150, CVE-2024-56767, CVE-2025-37838, CVE-2025-38352)

USN-7854-1: Linux kernel (KVM) vulnerabilities

Ubuntu Security Advisories
2 weeks 4 days ago
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS. (CVE-2025-40300) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - DMA engine subsystem; - GPU drivers; - HSI subsystem; - Ethernet team driver; - Framebuffer layer; - BTRFS file system; - Ext4 file system; - Network file system (NFS) server daemon; - Timer subsystem; - DCCP (Datagram Congestion Control Protocol); - IPv6 networking; - NET/ROM layer; - Packet sockets; - Network traffic control; - SCTP protocol; - VMware vSockets driver; - USB sound devices; (CVE-2023-52574, CVE-2023-52650, CVE-2024-35849, CVE-2024-41006, CVE-2024-49924, CVE-2024-50006, CVE-2024-50299, CVE-2024-53124, CVE-2024-53150, CVE-2024-56767, CVE-2025-21796, CVE-2025-37785, CVE-2025-37838, CVE-2025-38352, CVE-2025-38477, CVE-2025-38617, CVE-2025-38618)

USN-7853-1: Linux kernel vulnerabilities

Ubuntu Security Advisories
2 weeks 4 days ago
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS. (CVE-2025-40300) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - DMA engine subsystem; - GPU drivers; - HSI subsystem; - Ethernet team driver; - Ext4 file system; - Timer subsystem; - DCCP (Datagram Congestion Control Protocol); - IPv6 networking; - NET/ROM layer; - SCTP protocol; - USB sound devices; (CVE-2023-52574, CVE-2023-52650, CVE-2024-41006, CVE-2024-50006, CVE-2024-50299, CVE-2024-53124, CVE-2024-53150, CVE-2024-56767, CVE-2025-37838, CVE-2025-38352)

USN-7852-1: libxml2 vulnerability

Ubuntu Security Advisories
2 weeks 4 days ago
It was discovered that libxslt, used by libxml2, incorrectly handled certain attributes. An attacker could use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. This update adds a fix to libxml2 to mitigate the libxslt vulnerability.

USN-7850-1: Linux kernel vulnerabilities

Ubuntu Security Advisories
2 weeks 4 days ago
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this to expose sensitive information from the host OS. (CVE-2025-40300) A security issues was discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystem: - USB sound devices; (CVE-2024-53150)

varnish-7.7.3-2.fc44

Fedora Security Advisories
2 weeks 4 days ago
FEDORA-2025-2ff6e32273 Packages in this update:
  • varnish-7.7.3-2.fc44
Update description:

Automatic update for varnish-7.7.3-2.fc44.

Changelog * Wed Oct 29 2025 Luboš Uhliarik <luhliari@redhat.com> - 7.7.3-2 - Add tmpfiles.d rules for /var directories (bootc compatibility) * Mon Sep 15 2025 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.7.3-1 - New upstream release: A security release - Includes fix for VSV00017 aka CVE-2025-8671, rhbz#2388222 * Thu Jul 31 2025 Luboš Uhliarik <luhliari@redhat.com> - 7.7.1-4 - bundle jemalloc in RHEL * Fri Jul 25 2025 Fedora Release Engineering <releng@fedoraproject.org> - 7.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Thu May 22 2025 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.7.1-2 - Correct ABI and VRT versions - Pulled el7 support - Use systemd setup for users * Tue May 20 2025 Luboš Uhliarik <luhliari@redhat.com> - 7.7.1-1 - new version 7.7.1 * Thu Mar 27 2025 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.7.0-2 - Fix for eln build (merged from yselkowitz) - Fix for failing h2 switch check. Enabling full test suite again * Mon Mar 24 2025 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.7.0-1 - New upstream release - fedora now has completed the bin/sbin merge * Sun Jan 19 2025 Fedora Release Engineering <releng@fedoraproject.org> - 7.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Mon Dec 2 2024 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.6.1-1 - New upstream release * Mon Sep 16 2024 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.6.0-1 - New upstream release - Updated checkout of pkg-varnish * Sat Jul 20 2024 Fedora Release Engineering <releng@fedoraproject.org> - 7.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Tue Mar 19 2024 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.5.0-1 - New upstream release - Moved somethings around to make the diff from the upstream spec less - Upped some memory requirements in some of the tests. Necessary on aarch64 and ppc64le (and ppc32) - Reduced number of parallel jobs on s390x builders as builds tend to fail when stressed - Retired armv7hl * Sat Jan 27 2024 Fedora Release Engineering <releng@fedoraproject.org> - 7.4.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Nov 8 2023 Ingvar Hagelund <ingvar@redpill-linpro.com> - 7.4.2-1 - New upstream release. A security release - Includes fix for CVE-2023-44487 aka VSV00013, rhbz#2243328, HTTP/2 Rapid Reset Attack

kea-3.0.2-1.fc42

Fedora Security Advisories
2 weeks 4 days ago
FEDORA-2025-e121742c9d Packages in this update:
  • kea-3.0.2-1.fc42
Update description:
  • New version 3.0.2 (rhbz#2407048)
  • Fixes CVE-2025-11232 (rhbz#2407228)

kea-3.0.2-1.fc43

Fedora Security Advisories
2 weeks 4 days ago
FEDORA-2025-a7cea1535d Packages in this update:
  • kea-3.0.2-1.fc43
Update description:
  • New version 3.0.2 (rhbz#2407048)
  • Fixes CVE-2025-11232 (rhbz#2407229)