next-20250917: linux-next
Version:next-20250917 (linux-next)
Released:2025-09-17
Aggregator
expat-2.7.2-1.fc41
FEDORA-2025-d936540ef5
Packages in this update:
- expat-2.7.2-1.fc41
Rebase to 2.7.2
expat-2.7.2-1.fc42
FEDORA-2025-639f53ea67
Packages in this update:
- expat-2.7.2-1.fc42
Rebase to 2.7.2
expat-2.7.2-1.fc43
FEDORA-2025-d582069c41
Packages in this update:
- expat-2.7.2-1.fc43
Rebase to 2.7.2
rust-az-cvm-vtpm-0.7.4-3.fc42 rust-az-snp-vtpm-0.7.4-1.fc42 rust-az-tdx-vtpm-0.7.4-1.fc42 trustee-guest-components-0.13.0-3.fc42
FEDORA-2025-2408b72979
Packages in this update:
- rust-az-cvm-vtpm-0.7.4-3.fc42
- rust-az-snp-vtpm-0.7.4-1.fc42
- rust-az-tdx-vtpm-0.7.4-1.fc42
- trustee-guest-components-0.13.0-3.fc42
Rebase trustee-guest-components to v0.13.0 Include rust-az-???-vtpm packages rebase to version 0.7.4 Adjust (patches) to work with 'sev' version 6.
USN-7754-2: Linux kernel (FIPS) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Network traffic control;
(CVE-2025-38350, CVE-2025-37752, CVE-2024-57996)
USN-7754-1: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Network traffic control;
(CVE-2025-38350, CVE-2025-37752, CVE-2024-57996)
USN-7753-1: xmltodict vulnerability
Camilo Vera discovered that xmltodict parsed maliciously crafted XML input,
contrary to expectations. An attacker could possibly use this issue to
cause a denial of service, obtain sensitive information, or execute
arbitrary code.
xen-4.20.1-5.fc43
FEDORA-2025-92efb95906
Packages in this update:
- xen-4.20.1-5.fc43
Mutiple vulnerabilities in the Viridian interface [XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143] Arm issues with page refcounting [XSA-473, CVE-2025-58144, CVE-2025-58145]
next-20250916: linux-next
Version:next-20250916 (linux-next)
Released:2025-09-16
USN-7752-1: libyang vulnerabilities
It was discovered that libyang incorrectly handled certain memory
operations when parsing YANG strings. An attacker could possibly use this
issue to cause libyang to crash, resulting in a denial of service.
python-pip-24.3.1-5.fc42
FEDORA-2025-6d50efcd0c
Packages in this update:
- python-pip-24.3.1-5.fc42
Security fix for the bundled urllib3 for CVE-2025-50181
python-pip-25.1.1-17.fc43
FEDORA-2025-b108c70b29
Packages in this update:
- python-pip-25.1.1-17.fc43
Security fix for the bundled urllib3 for CVE-2025-50181
python-pip-24.2-3.fc41
FEDORA-2025-870a69fa85
Packages in this update:
- python-pip-24.2-3.fc41
Security fix for the bundled urllib3 for CVE-2025-50181
firefox-143.0-1.fc42
FEDORA-2025-4dca10ca2c
Packages in this update:
- firefox-143.0-1.fc42
- New upstream release (143.0)
firefox-143.0-1.fc41
FEDORA-2025-100ae879e3
Packages in this update:
- firefox-143.0-1.fc41
- New upstream release (143.0)
DSA-6002-1 node-sha.js - security update
next-20250915: linux-next
Version:next-20250915 (linux-next)
Released:2025-09-15
kernel-6.17.0-0.rc6.49.fc43 kernel-headers-6.17.0-0.rc6.49.fc43
FEDORA-2025-22c5cc654d
Packages in this update:
- kernel-6.17.0-0.rc6.49.fc43
- kernel-headers-6.17.0-0.rc6.49.fc43
The 6.17 rc6 kernel build contains a number of important fixes across the tree. It also includes mitigations for the VMSCAPE vulnerability on x86 CPUs. This has been assigned CVE-2025-40300.
USN-7751-1: SQLite vulnerability
It was discovered that the FTS5 SQLite extension incorrectly calculated
certain array lengths. An attacker could use this issue to cause SQLite to
crash, resulting in a denial of service, or possibly execute arbitrary
code.