Aggregator

FEDORA-2026-2c5cde060d Packages in this update:

• python-django-allauth-65.18.0-1.fc44

Update description:

Update to the latest django-allauth

Fixes CVE-2026-27982

It was discovered that rabbitmq-c exposed credentials in command-line arguments under certain circumstances. A local attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2023-35789) It was discovered that rabbitmq-c incorrectly handled AMQP frame lengths under certain circumstances, which could lead to an out-of-bounds read. A remote attacker could possibly use this issue to cause rabbitmq-c to crash, resulting in a denial of service. (CVE-2026-44235) It was discovered that rabbitmq-c incorrectly handled AMQP login handshakes under certain circumstances, which could lead to a heap buffer overflow. A remote attacker could possibly use this issue to cause rabbitmq-c to crash, resulting in a denial of service, or execute arbitrary code. (CVE-2026-44236)

Version:next-20260616 (linux-next) Released:2026-06-16

FEDORA-2026-67a9805962 Packages in this update:

• strongswan-6.0.7-2.fc43

Update description:

Addresses CVE-2026-47895 which is a theoretical RCE

Fixes CVE-2026-25075, CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35331, CVE-2026-35332, CVE-2026-35333, CVE-2026-35334

Update to address CVE-2025-9615 and CVE-2025-62291

FEDORA-2026-a7ff7017ee Packages in this update:

• util-linux-2.41.5-1.fc43

Update description:

upstream upgrade with security fixes:

• CVE-2026-53612 - libmount: TOCTOU attack via ancestor directory swap during mount
• CVE-2026-53613 - libmount: SUID bypass via LIBMOUNT_FORCE_MOUNT2 and legacy mount path
• CVE-2026-53614 - libmount: fd_target TOCTOU prevention

FEDORA-2026-c70cb96ff1 Packages in this update:

• util-linux-2.41.5-1.fc44

Update description:

upstream upgrade with security fixes:

• CVE-2026-53612 - libmount: TOCTOU attack via ancestor directory swap during mount
• CVE-2026-53613 - libmount: SUID bypass via LIBMOUNT_FORCE_MOUNT2 and legacy mount path
• CVE-2026-53614 - libmount: fd_target TOCTOU prevention

It was discovered that FreeRDP incorrectly handled memory under certain circumstances, which could lead to an out-of-bounds heap write. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2026-45700) In addition, this update fixes a regression introduced in USN-8105-1. The update introduces a complete fix for CVE-2026-22858, CVE-2026-23732 and CVE-2026-25952 in Ubuntu 24.04 LTS and Ubuntu 25.10.

USN-8349-1 fixed vulnerabilities in rsync. Unfortunately that update introduced multiple regressions in rsync functionality. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote attacker with read access to an rsync server could possibly use this issue to cause a denial of service. (CVE-2025-10158) Batuhan Sancak, Damien Neil, and Michael Stapelberg discovered that rsync daemons configured without chroot protection were exposed to a race condition on parent path components. A local attacker with write access to a module could possibly use this issue to overwrite files, obtain sensitive information, or escalate privileges. (CVE-2026-29518) It was discovered that rsync did not properly validate a length value while sorting extended attributes. An attacker could possibly use this issue to cause a denial of service. (CVE-2026-41035) It was discovered that rsync performed reverse-DNS lookups after chrooting in some daemon configurations. A remote attacker could possibly use this issue to bypass hostname-based access controls and access network services. (CVE-2026-43617) Omar Elsayed discovered that rsync did not properly check for integer overflows while decoding compressed tokens. A remote attacker could possibly use this issue to obtain sensitive information. (CVE-2026-43618) Andrew Tridgell discovered that rsync did not fully fix a symlink race condition in path-based system calls for daemons configured without chroot protection. A local attacker could possibly use this issue to overwrite files, obtain sensitive information, or escalate privileges. (CVE-2026-43619) Pratham Gupta discovered that rsync did not properly validate an index while processing file lists. A remote attacker could possibly use this issue to cause rsync to crash, resulting in a denial of service. (CVE-2026-43620) Michal Ruprich discovered that rsync contained an off-by-one error while handling HTTP proxy responses. An attacker able to intercept network communications or a malicious proxy server could possibly use this issue to cause a denial of service. (CVE-2026-45232)

FEDORA-2026-d2806ddffc Packages in this update:

• materialx-1.39.5-1.fc44

Update description:

New release version 1.39.5.

See the change log.

FEDORA-2026-85d5d5f493 Packages in this update:

• materialx-1.39.5-1.fc43

Update description:

New release version 1.39.5.

See the change log.

FEDORA-2026-284c049f7f Packages in this update:

• strongswan-6.0.7-1.fc44

Update description:

Addresses CVE-2026-47895 which is a theoretical RCE

FEDORA-2026-e5118f1777 Packages in this update:

• lighttpd-1.4.83-1.fc44

Update description:

1.4.83

https://wiki.lighttpd.net/Release-1_4_83

FEDORA-2026-265fb84974 Packages in this update:

• lighttpd-1.4.83-1.fc43

Update description:

1.4.83

https://wiki.lighttpd.net/Release-1_4_83

FEDORA-2026-5eeadd9b1b Packages in this update:

• firefox-152.0-1.fc44
• nss-3.124.0-1.fc44

Update description:

Update NSS to 3.124.0 Update Firefox to 152.0

FEDORA-EPEL-2026-52d18d8d5a Packages in this update:

• 7zip-26.01-1.el10_3

Update description:

• Fixes CVE-2026-48092: Information disclosure in 32-bit builds
• Fixes CVE-2026-48095: Arbitrary code execution in NTFS handler
• Fixes CVE-2026-48101: Information disclosure in UEFI capsule parser
• Fixes CVE-2026-48102: Information disclosure and DOS via crafted UDF image
• Fixes CVE-2026-48103: Off-by-one buffer over-read in WIM archive handler
• Fixes CVE-2026-48104: Uninitialized heap read in SquashFS archive handler
• Fixes CVE-2026-48111: Off-by-one OOB read in UEFI firmware image parser
• Fixes CVE-2026-48112: Heap-based buffer over-read in Ar handler BSD SYMDEF parser

FEDORA-EPEL-2026-8d909527ba Packages in this update:

• 7zip-26.01-1.el10_2

Update description:

• Fixes CVE-2026-48092: Information disclosure in 32-bit builds
• Fixes CVE-2026-48095: Arbitrary code execution in NTFS handler
• Fixes CVE-2026-48101: Information disclosure in UEFI capsule parser
• Fixes CVE-2026-48102: Information disclosure and DOS via crafted UDF image
• Fixes CVE-2026-48103: Off-by-one buffer over-read in WIM archive handler
• Fixes CVE-2026-48104: Uninitialized heap read in SquashFS archive handler
• Fixes CVE-2026-48111: Off-by-one OOB read in UEFI firmware image parser
• Fixes CVE-2026-48112: Heap-based buffer over-read in Ar handler BSD SYMDEF parser

FEDORA-2026-f36864b408 Packages in this update:

• 7zip-26.01-1.fc43

Update description:

• Fixes CVE-2026-48092: Information disclosure in 32-bit builds
• Fixes CVE-2026-48095: Arbitrary code execution in NTFS handler
• Fixes CVE-2026-48101: Information disclosure in UEFI capsule parser
• Fixes CVE-2026-48102: Information disclosure and DOS via crafted UDF image
• Fixes CVE-2026-48103: Off-by-one buffer over-read in WIM archive handler
• Fixes CVE-2026-48104: Uninitialized heap read in SquashFS archive handler
• Fixes CVE-2026-48111: Off-by-one OOB read in UEFI firmware image parser
• Fixes CVE-2026-48112: Heap-based buffer over-read in Ar handler BSD SYMDEF parser

FEDORA-2026-4be7569210 Packages in this update:

• 7zip-26.01-1.fc44

Update description:

• Fixes CVE-2026-48092: Information disclosure in 32-bit builds
• Fixes CVE-2026-48095: Arbitrary code execution in NTFS handler
• Fixes CVE-2026-48101: Information disclosure in UEFI capsule parser
• Fixes CVE-2026-48102: Information disclosure and DOS via crafted UDF image
• Fixes CVE-2026-48103: Off-by-one buffer over-read in WIM archive handler
• Fixes CVE-2026-48104: Uninitialized heap read in SquashFS archive handler
• Fixes CVE-2026-48111: Off-by-one OOB read in UEFI firmware image parser
• Fixes CVE-2026-48112: Heap-based buffer over-read in Ar handler BSD SYMDEF parser

FEDORA-2026-1c873954fa Packages in this update:

• firefox-152.0-1.fc43
• nss-3.124.0-1.fc43

Update description:

Update NSS to 3.124.0 Update to Firefox 152.0

It was discovered that Ruby's Net::IMAP library did not properly verify that Transport Layer Security (TLS) encryption was started after issuing a STARTTLS command. A remote attacker could possibly use this issue to perform a machine-in-the-middle attack and silently bypass TLS encryption. (CVE-2026-42246) It was also discovered that Ruby's Net::IMAP library did not validate string arguments passed to certain commands. A remote attacker could possibly use this issue to inject arbitrary IMAP commands. (CVE-2026-42257)