Aggregator

FEDORA-2026-7839a46d9d Packages in this update:

• trafficserver-10.1.2-1.fc44

Update description:

Resolves: CVE-2025-58136 - A simple legitimate POST request causes a crash CVE-2025-65114 - Malformed chunked message body allows request smuggling

Changes with Apache Traffic Server 10.1.2 #12864 - Fix ppa log field #13037 - Fix prev_is_cr flag handling in chunked encoding parser #13040 - HttpSM - make sure we have a valid buffer to write on.

FEDORA-2026-a157bd84c4 Packages in this update:

• trafficserver-10.1.2-1.fc42

Update description:

Resolves: CVE-2025-58136 - A simple legitimate POST request causes a crash CVE-2025-65114 - Malformed chunked message body allows request smuggling

Changes with Apache Traffic Server 10.1.2 #12864 - Fix ppa log field #13037 - Fix prev_is_cr flag handling in chunked encoding parser #13040 - HttpSM - make sure we have a valid buffer to write on.

FEDORA-EPEL-2026-7d17b6d554 Packages in this update:

• trafficserver-9.2.13-1.el9

Update description:

Resolves: CVE-2025-58136 - A simple legitimate POST request causes a crash CVE-2025-65114 - Malformed chunked message body allows request smuggling

Changes with Apache Traffic Server 9.2.13 #12834 - Make 9.2.x buildable on macOS 26 #12909 - Updating make/configure for hdrrwr lib includes #13038 - 9.2.x: Fix prev_is_cr flag handling in chunked encoding parser #13039 - 9.2.x: HttpSM - make sure we have a valid buffer to write on.

FEDORA-EPEL-2026-ec5df302a7 Packages in this update:

• trafficserver-9.2.13-1.el8

Update description:

Resolves: CVE-2025-58136 - A simple legitimate POST request causes a crash CVE-2025-65114 - Malformed chunked message body allows request smuggling

Changes with Apache Traffic Server 9.2.13 #12834 - Make 9.2.x buildable on macOS 26 #12909 - Updating make/configure for hdrrwr lib includes #13038 - 9.2.x: Fix prev_is_cr flag handling in chunked encoding parser #13039 - 9.2.x: HttpSM - make sure we have a valid buffer to write on.

FEDORA-2026-95ee0edcd5 Packages in this update:

• corosync-3.1.9-4.fc42

Update description:

Security fix for CVE-2026-35091 and CVE-2026-35092

FEDORA-2026-ee4ff58256 Packages in this update:

• corosync-3.1.10-2.fc43

Update description:

Security fix for CVE-2026-35091 and CVE-2026-35092

FEDORA-2026-e34a334e81 Packages in this update:

• corosync-3.1.10-5.fc44

Update description:

Security fix for CVE-2026-35091 and CVE-2026-35092

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Cryptographic API; - UDF file system; - NFC subsystem; - Network traffic control; (CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060, CVE-2026-23074)

Version:next-20260402 (linux-next) Released:2026-04-02

Version:6.6.132 (longterm) Released:2026-04-02 Source:linux-6.6.132.tar.xz PGP Signature:linux-6.6.132.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.6.132

Version:6.19.11 (stable) Released:2026-04-02 Source:linux-6.19.11.tar.xz PGP Signature:linux-6.19.11.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.19.11

Version:6.18.21 (longterm) Released:2026-04-02 Source:linux-6.18.21.tar.xz PGP Signature:linux-6.18.21.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.18.21

Version:6.12.80 (longterm) Released:2026-04-02 Source:linux-6.12.80.tar.xz PGP Signature:linux-6.12.80.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.12.80

Version:6.6.131 (longterm) Released:2026-04-02 Source:linux-6.6.131.tar.xz PGP Signature:linux-6.6.131.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.6.131

FEDORA-2026-8d34161d90 Packages in this update:

• yarnpkg-1.22.22-18.fc44

Update description:

Refresh vendor bundle, fixes CVE-2026-4800.

FEDORA-EPEL-2026-7f228e17b9 Packages in this update:

• yarnpkg-1.22.22-18.el10_3

Update description:

Refresh vendor bundle, fixes CVE-2026-4800.

FEDORA-2026-7a6943e57d Packages in this update:

• yarnpkg-1.22.22-18.fc42

Update description:

Refresh vendor bundle, fixes CVE-2026-4800.

FEDORA-EPEL-2026-3d044cef27 Packages in this update:

• yarnpkg-1.22.22-18.el9

Update description:

Refresh vendor bundle, fixes CVE-2026-4800.

FEDORA-2026-085abeea02 Packages in this update:

• yarnpkg-1.22.22-18.fc43

Update description:

Refresh vendor bundle, fixes CVE-2026-4800.

Update vendor bundle.

FEDORA-2026-5eb6f779c0 Packages in this update:

• mingw-exiv2-0.28.8-1.fc43

Update description:

Update to exiv2-0.28.8.