Aggregator

FEDORA-2026-893c99f61c Packages in this update:

• transmission-4.1.2-1.fc43

Update description:

4.1.2, fix for CVE-2026-38978

Version:next-20260603 (linux-next) Released:2026-06-03

FEDORA-EPEL-2026-d5e54be3b9 Packages in this update:

• vaultwarden-1.36.0-1.el10_3

Update description:

update to 1.36.0

FEDORA-EPEL-2026-d857066999 Packages in this update:

• vaultwarden-1.36.0-1.el10_2

Update description:

update to 1.36.0

FEDORA-2026-264f9ef567 Packages in this update:

• vaultwarden-1.36.0-1.fc43

Update description:

update to 1.36.0

FEDORA-2026-e14ea170b6 Packages in this update:

• vaultwarden-1.36.0-1.fc44

Update description:

update to 1.36.0

FEDORA-EPEL-2026-759c8b25a3 Packages in this update:

• vaultwarden-1.36.0-1.el9

Update description:

update to 1.36.0

FEDORA-EPEL-2026-c4971fa237 Packages in this update:

• vaultwarden-web-2026.4.1-1.el10_2

Update description:

update to 2026.4.1

FEDORA-EPEL-2026-f88f773927 Packages in this update:

• vaultwarden-web-2026.4.1-1.el10_3

Update description:

update to 2026.4.1

FEDORA-2026-064873552d Packages in this update:

• vaultwarden-web-2026.4.1-1.fc43

Update description:

update to 2026.4.1

FEDORA-2026-111cf6d28f Packages in this update:

• vaultwarden-web-2026.4.1-1.fc44

Update description:

update to 2026.4.1

FEDORA-EPEL-2026-b41e450a81 Packages in this update:

• vaultwarden-web-2026.4.1-1.el9

Update description:

update to 2026.4.1

FEDORA-2026-6988e8f652 Packages in this update:

• perl-Archive-Tar-3.04-522.fc43

Update description:

Fixed CVE-2026-42496 - Path traversal via crafted symlinks allows arbitrary file access Backported from 3.08

FEDORA-EPEL-2026-a70b06fdf5 Packages in this update:

• php-extras-8.3.31-1.el10_2

Update description:

PHP version 8.3.31 (07 May 2026)

PDO_Firebird:

• Fixed GHSA-w476-322c-wpvm (SQL injection via NUL bytes in quoted strings). (CVE-2025-14179) (SakiTakamachi)

FEDORA-EPEL-2026-b08259fec1 Packages in this update:

• php-extras-8.3.31-1.el10_3

Update description:

PHP version 8.3.31 (07 May 2026)

PDO_Firebird:

• Fixed GHSA-w476-322c-wpvm (SQL injection via NUL bytes in quoted strings). (CVE-2025-14179) (SakiTakamachi)

FEDORA-EPEL-2026-6c66671917 Packages in this update:

• php8.4-extras-8.4.21-1.el10_3

Update description:

PHP version 8.4.21 (07 May 2026)

PDO_Firebird:

• Fixed GHSA-w476-322c-wpvm (SQL injection via NUL bytes in quoted strings). (CVE-2025-14179) (SakiTakamachi)

FEDORA-EPEL-2026-7d8fe2fa97 Packages in this update:

• php8.4-extras-8.4.21-1.el10_2

Update description:

PHP version 8.4.21 (07 May 2026)

PDO_Firebird:

• Fixed GHSA-w476-322c-wpvm (SQL injection via NUL bytes in quoted strings). (CVE-2025-14179) (SakiTakamachi)

FEDORA-EPEL-2026-b1204dff3a Packages in this update:

• php-extras-8.0.30-3.el9

Update description:

Backported from 8.2.31

PDO_Firebird:

• Fixed GHSA-w476-322c-wpvm (SQL injection via NUL bytes in quoted strings). (CVE-2025-14179) (SakiTakamachi)

USN-8344-1 introduced a regression in pip. This update provides a complete fix for this issue.. We apologize for the inconvenience. Original advisory details: It was discovered that pip's bundled urllib3 library improperly handled streaming decompression of highly compressed data. A remote attacker could possibly use this issue to cause pip to consume excessive resources, leading to a denial of service. (CVE-2025-66471)

USN-8363-1 fixed several vulnerabilities in MySQL. This update provides the corresponding fixes for MySQL on Ubuntu 20.04 LTS. Original advisory details: Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.46 in Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. Ubuntu 25.10 and Ubuntu 26.04 LTS have been updated to MySQL 8.4.9. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-46.html https://dev.mysql.com/doc/relnotes/mysql/8.4/en/news-8-4-9.html https://www.oracle.com/security-alerts/cpuapr2026.html