Aggregator

FEDORA-2026-36594550b0 Packages in this update:

• webkitgtk-2.52.0-1.fc42

Update description:

Update to 2.52.0:

• Make text look like in other browsers by blending in linear color space.
• Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.
• Improved composition scheduling to avoid blocking waiting for tile painting.
• Improved performance of accelerated 2D canvas by recording operations for batched replay.
• Improved async scrolling when main thread is busy by avoiding locks and rendering the scrollbars from the scrolling thread.
• Enabled dynamic MSAA for accelerated 2D canvas rendering.
• Improved text rendering performance
• Videos with BT2100-PQ colorspace are now tone-mapped to SDR, ensuring colours do not appear washed out.
• Added support for the Audio Output Devices API.
• Added API to handle WebXR permission requests.
• Added API to query the immersive session status.
• Added initial API for web extensions.

FEDORA-2026-b4d393799a Packages in this update:

• bpfman-0.5.4-6.fc42

Update description:

Fix CVE-2026-33056 (tar-rs 0.4.45); Closes rhbz#2449672

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853)

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - MMC subsystem; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - MMC subsystem; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)

Version:next-20260324 (linux-next) Released:2026-03-24

FEDORA-2026-d62d7fe77e Packages in this update:

• bpfman-0.5.4-5.fc43

Update description:

Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672

FEDORA-2026-2fc36ddefe Packages in this update:

• bpfman-0.5.4-7.fc44

Update description:

Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672

Seunghyun Lee discovered that Redis incorrectly handled memory during hyperloglog operations. An attacker could use this issue to cause a denial of service, or possibly achieve remote code execution.

FEDORA-2026-e14350a7de Packages in this update:

• rust-rustls-webpki-0.103.10-1.fc44

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-EPEL-2026-1460f79f2c Packages in this update:

• rust-rustls-webpki-0.103.10-1.el10_3

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-EPEL-2026-860e57b32b Packages in this update:

• rust-rustls-webpki-0.103.10-1.el10_2

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-EPEL-2026-e6e6228edf Packages in this update:

• rust-rustls-webpki-0.103.10-1.el9

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-2026-efe3ef6f55 Packages in this update:

• rust-rustls-webpki-0.103.10-1.fc43

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-2026-334414b5e8 Packages in this update:

• rust-rustls-webpki-0.103.10-1.fc42

Update description:

Update to version 0.103.10. Addresses RUSTSEC-2026-0049.

Update to version 0.103.9.

FEDORA-2026-6502cee6c2 Packages in this update:

• webkitgtk-2.52.0-1.fc44

Update description:

Update to 2.52.0:

• Make text look like in other browsers by blending in linear color space.
• Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.
• Improved composition scheduling to avoid blocking waiting for tile painting.
• Improved performance of accelerated 2D canvas by recording operations for batched replay.
• Improved async scrolling when main thread is busy by avoiding locks and rendering the scrollbars from the scrolling thread.
• Enabled dynamic MSAA for accelerated 2D canvas rendering.
• Improved text rendering performance
• Videos with BT2100-PQ colorspace are now tone-mapped to SDR, ensuring colours do not appear washed out.
• Added support for the Audio Output Devices API.
• Added API to handle WebXR permission requests.
• Added API to query the immersive session status.
• Added initial API for web extensions.

2.51.93:

• Make text look like in other browsers by blending in linear color space.
• Avoid composition for non visible layers with running animations.
• Fix several crashes and rendering issues.

2.51.92:

• Fix PDF rendering broken by the accelerated 2D canvas performance improvements.
• Fix flickering while scrolling in some edge cases.
• Support for rotation and mirroring in internal WebCodecs encoder.
• System fallback font selection no longer takes style into account.
• Fix several crashes and rendering issues.

FEDORA-2026-431948187d Packages in this update:

• webkitgtk-2.52.0-1.fc43

Update description:

Update to 2.52.0:

• Make text look like in other browsers by blending in linear color space.
• Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.
• Improved composition scheduling to avoid blocking waiting for tile painting.
• Improved performance of accelerated 2D canvas by recording operations for batched replay.
• Improved async scrolling when main thread is busy by avoiding locks and rendering the scrollbars from the scrolling thread.
• Enabled dynamic MSAA for accelerated 2D canvas rendering.
• Improved text rendering performance
• Videos with BT2100-PQ colorspace are now tone-mapped to SDR, ensuring colours do not appear washed out.
• Added support for the Audio Output Devices API.
• Added API to handle WebXR permission requests.
• Added API to query the immersive session status.
• Added initial API for web extensions.

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - MMC subsystem; - Network drivers; - USB Device Class drivers; - BTRFS file system; - HFS+ file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Simplified Mandatory Access Control Kernel framework; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49267, CVE-2024-47659, CVE-2024-49927, CVE-2024-56548, CVE-2024-56581, CVE-2024-56593, CVE-2025-21704, CVE-2025-40215)

FEDORA-EPEL-2026-0277a2c7b8 Packages in this update:

• rust-scx_rusty-0.5.4-8.el9

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-EPEL-2026-cd2104298b Packages in this update:

• rust-scx_rustland-0.0.3-8.el9

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056