1 week 5 days ago
In the Linux kernel, the following vulnerability has been
resolved: smb: client: fix UAF in async decryption Doing an async
decryption (large read) crashes with a slab-use-after-free way down in the
crypto API.
In the Linux kernel, the following vulnerability has been
resolved: padata: avoid UAF for reorder_work Although the previous patch
can avoid ps and ps UAF for _do_serial, it can not avoid potential UAF
issue for reorder_work.
In the Linux kernel, the following vulnerability has been
resolved: exfat: fix random stack corruption after get_block When get_block
is called with a buffer_head allocated on the stack, such as
do_mpage_readpage, stack corruption due to buffer_head UAF may occur in the
following race condition situation.
In the Linux kernel, the following vulnerability has been
resolved: smb: client: fix use-after-free in crypt_message when using async
crypto The CVE-2024-50047 fix removed asynchronous crypto handling from
crypt_message(), assuming all crypto operations are synchronous.
In the Linux kernel, the following vulnerability has been
resolved: ksmbd: fix Preauh_HashValue race condition If client send
multiple session setup requests to ksmbd, Preauh_HashValue race condition
could happen.
In the Linux kernel, the following vulnerability has been
resolved: io_uring/futex: ensure io_futex_wait() cleans up properly on
failure The io_futex_data is allocated upfront and assigned to the io_kiocb
async_data field, but the request isn't marked with REQ_F_ASYNC_DATA at
that point.
In the Linux kernel, the following vulnerability has been
resolved: af_unix: Initialise scc_index in unix_add_edge().
1 week 5 days ago
FEDORA-EPEL-2026-4d4c40a12a
Packages in this update:
- dr_libs-0-0.29.20241217git660795b.el8
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- x86 architecture;
- MMC subsystem;
- Network drivers;
- USB Device Class drivers;
- BTRFS file system;
- File systems infrastructure;
- XFRM subsystem;
- IPv4 networking;
- IPv6 networking;
- MAC80211 subsystem;
- Simplified Mandatory Access Control Kernel framework;
(CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659,
CVE-2024-49927, CVE-2024-56548, CVE-2024-56593, CVE-2025-21704,
CVE-2025-40215)
1 week 5 days ago
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- x86 architecture;
- MMC subsystem;
- Network drivers;
- USB Device Class drivers;
- BTRFS file system;
- File systems infrastructure;
- XFRM subsystem;
- IPv4 networking;
- IPv6 networking;
- MAC80211 subsystem;
- Simplified Mandatory Access Control Kernel framework;
(CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659,
CVE-2024-49927, CVE-2024-56548, CVE-2024-56593, CVE-2025-21704,
CVE-2025-40215)
1 week 5 days ago
FEDORA-EPEL-2026-2b061badd7
Packages in this update:
- dr_libs-0^20241216git660795b-3.el9
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
FEDORA-EPEL-2026-86f8917aae
Packages in this update:
- dr_libs-0^20241216git660795b-3.el10_1
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- GPU drivers;
- MMC subsystem;
(CVE-2022-49267, CVE-2025-21780)
1 week 5 days ago
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- GPU drivers;
- MMC subsystem;
(CVE-2022-49267, CVE-2025-21780)
1 week 5 days ago
FEDORA-EPEL-2026-04b0cd43d5
Packages in this update:
- dr_libs-0^20241216git660795b-3.el10_2
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
FEDORA-EPEL-2026-140aefd33c
Packages in this update:
- dr_libs-0^20241216git660795b-3.el10_3
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
FEDORA-2026-ac5dd35f2d
Packages in this update:
- python3.12-3.12.13-1.fc43
Update description:
Update to 3.12.13
1 week 5 days ago
FEDORA-2026-3ebfc12a16
Packages in this update:
- python3.12-3.12.13-1.fc42
Update description:
Update to 3.12.13
Security fixes for CVE-2026-1299, CVE-2026-0865, CVE-2025-15366 and CVE-2025-15367
1 week 5 days ago
FEDORA-2026-05d833765a
Packages in this update:
- python3.12-3.12.13-1.fc44
Update description:
Update to 3.12.13
Security fixes for CVE-2026-1299, CVE-2026-0865, CVE-2025-15366 and CVE-2025-15367
1 week 5 days ago
FEDORA-2026-2350c6fd8c
Packages in this update:
- dr_libs-0^20241216git660795b-4.fc42
Update description:
Backport the fix for CVE-2026-29022
1 week 5 days ago
FEDORA-2026-6888affe44
Packages in this update:
Update description:
Update to address CVE-2025-9615 and CVE-2025-62291
1 week 5 days ago
FEDORA-2026-154efc6066
Packages in this update:
- python-lxml-html-clean-0.4.4-1.fc42
Update description:
Security update for python-lxml-html-clean
1 week 5 days ago
FEDORA-2026-f46fc594f3
Packages in this update:
- python-lxml-html-clean-0.4.4-1.fc44
Update description:
Security update for python-lxml-html-clean
1 week 5 days ago
FEDORA-2026-fdded962b2
Packages in this update:
- python-lxml-html-clean-0.4.4-1.fc43
Update description:
Security update for python-lxml-html-clean
1 week 5 days ago
FEDORA-EPEL-2026-8a5d339569
Packages in this update:
Update description:
Update to 1.4.0
1 week 5 days ago
FEDORA-EPEL-2026-830cb46951
Packages in this update:
Update description:
Update to 1.4.0
