Aggregator

maturin-1.9.6-5.fc45 python-fastar-0.9.0-2.fc45 python-uv-build-0.10.12-1.fc45 rust-astral-tokio-tar-0.6.0-1.fc45 rust-tar-0.4.45-1.fc45 uv-0.10.12-1.fc45

Fedora Security Advisories
1 hour 24 minutes ago
FEDORA-2026-c6c01a71f2 Packages in this update:
  • maturin-1.9.6-5.fc45
  • python-fastar-0.9.0-2.fc45
  • python-uv-build-0.10.12-1.fc45
  • rust-astral-tokio-tar-0.6.0-1.fc45
  • rust-tar-0.4.45-1.fc45
  • uv-0.10.12-1.fc45
Update description:

Update rust-astral-tokio-tar to 0.6.0, fixing CVE-2026-32766. Update rust-tar to 0.4.45 to 0.4.45, fixing CVE-2026-33056. Update uv and python-uv-build to [0.10.2](https://github.com/astral-sh/uv/blob/0.10.12/CHANGELOG.md, rebuilding them with the latest rust-astral-tokio-tar and rust-tar. Rebuild python-fastar and maturin with the latest rust-tar.

pypy3.11-7.3.21-3.3.11.fc45

Fedora Security Advisories
18 hours 55 minutes ago
FEDORA-2026-ab51ea3744 Packages in this update:
  • pypy3.11-7.3.21-3.3.11.fc45
Update description:

Automatic update for pypy3.11-7.3.21-3.3.11.fc45.

Changelog * Thu Mar 19 2026 Charalampos Stratakis <cstratak@redhat.com> - 7.3.21-2 - Fix CVE-2025-56005 via removing no-longer used bundled ply - Fixes: rhbz#2431978 * Thu Mar 19 2026 Charalampos Stratakis <cstratak@redhat.com> - 7.3.21-1 - Update to 7.3.21 - Fixes: rhbz#2447285

pypy3.10-7.3.19-11.3.10.fc45

Fedora Security Advisories
20 hours 35 minutes ago
FEDORA-2026-06635fd623 Packages in this update:
  • pypy3.10-7.3.19-11.3.10.fc45
Update description:

Automatic update for pypy3.10-7.3.19-11.3.10.fc45.

Changelog * Thu Mar 19 2026 Charalampos Stratakis <cstratak@redhat.com> - 7.3.19-11 - Security fix for CVE-2025-56005 for the bundled ply within the bundled pycparser - Fixes: rhbz#2431977

pypy-7.3.21-3.fc45

Fedora Security Advisories
20 hours 50 minutes ago
FEDORA-2026-7585365ba3 Packages in this update:
  • pypy-7.3.21-3.fc45
Update description:

Automatic update for pypy-7.3.21-3.fc45.

Changelog * Thu Mar 19 2026 Charalampos Stratakis <cstratak@redhat.com> - 7.3.21-2 - Security fix for CVE-2025-56005 for the bundled ply within the bundled pycparser - Fixes: rhbz#2431976 * Thu Mar 19 2026 Charalampos Stratakis <cstratak@redhat.com> - 7.3.21-1 - Update to 7.3.21 - Fixes: rhbz#2447284

USN-8107-1: Linux kernel (AWS FIPS) vulnerabilities

Ubuntu Security Advisories
21 hours 51 minutes ago
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - MMC subsystem; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)

USN-8112-2: Linux kernel (FIPS) vulnerabilities

Ubuntu Security Advisories
1 day 2 hours ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - MMC subsystem; - Network drivers; - USB Device Class drivers; - BTRFS file system; - HFS+ file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Simplified Mandatory Access Control Kernel framework; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659, CVE-2024-49927, CVE-2024-56548, CVE-2024-56581, CVE-2024-56593, CVE-2025-21704, CVE-2025-40215)

USN-8112-1: Linux kernel vulnerabilities

Ubuntu Security Advisories
1 day 2 hours ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - MMC subsystem; - Network drivers; - USB Device Class drivers; - BTRFS file system; - HFS+ file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Simplified Mandatory Access Control Kernel framework; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659, CVE-2024-49927, CVE-2024-56548, CVE-2024-56581, CVE-2024-56593, CVE-2025-21704, CVE-2025-40215)

rubygem-json-2.13.2-2.fc43

Fedora Security Advisories
1 day 7 hours ago
FEDORA-2026-8c07fcde49 Packages in this update:
  • rubygem-json-2.13.2-2.fc43
Update description:

This new updates backports a fix for a format string injection vulnerability in JSON.parse, which is now assigned as CVE-2026-33210

perl-YAML-Syck-1.37-1.el9

Fedora Security Advisories
1 day 17 hours ago
FEDORA-EPEL-2026-52be5354a0 Packages in this update:
  • perl-YAML-Syck-1.37-1.el9
Update description:

YAML::Syck versions up to and including 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter. The heap overflow occurs when class names exceed the initial 512-byte allocation. The base64 decoder could read past the buffer end on trailing newlines. strtok mutated n->type_id in place, corrupting shared node data. A memory leak occurred in syck_hdlr_add_anchor when a node already had an anchor. The incoming anchor string 'a' was leaked on early return.