Aggregator

FEDORA-EPEL-2026-365332b759 Packages in this update:

• chromium-144.0.7559.109-1.el9

Update description:

Update to 144.0.7559.109

* CVE-2026-1504: Inappropriate implementation in Background Fetch API

FEDORA-EPEL-2026-0123df77aa Packages in this update:

• chromium-144.0.7559.109-1.el10_1

Update description:

Update to 144.0.7559.109

* CVE-2026-1504: Inappropriate implementation in Background Fetch API

FEDORA-2026-64e9a195d3 Packages in this update:

• chromium-144.0.7559.109-1.fc42

Update description:

Update to 144.0.7559.109

* CVE-2026-1504: Inappropriate implementation in Background Fetch API

FEDORA-2026-ffccca9880 Packages in this update:

• chromium-144.0.7559.109-1.fc43

Update description:

Update to 144.0.7559.109

* CVE-2026-1504: Inappropriate implementation in Background Fetch API

FEDORA-EPEL-2026-3aa83c53c2 Packages in this update:

• chromium-144.0.7559.109-1.el10_2

Update description:

Update to 144.0.7559.109

* CVE-2026-1504: Inappropriate implementation in Background Fetch API

Version:6.18.8 (stable) Released:2026-01-30 Source:linux-6.18.8.tar.xz PGP Signature:linux-6.18.8.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.18.8

Version:6.12.68 (longterm) Released:2026-01-30 Source:linux-6.12.68.tar.xz PGP Signature:linux-6.12.68.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.12.68

Version:6.6.122 (longterm) Released:2026-01-30 Source:linux-6.6.122.tar.xz PGP Signature:linux-6.6.122.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.6.122

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - NVME drivers; - File systems infrastructure; - Timer subsystem; - Memory management; - Packet sockets; (CVE-2022-48986, CVE-2024-27078, CVE-2024-49959, CVE-2024-50195, CVE-2024-56606, CVE-2024-56756, CVE-2025-39993)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - NVME drivers; - File systems infrastructure; - Timer subsystem; - Memory management; - Packet sockets; (CVE-2022-48986, CVE-2024-27078, CVE-2024-49959, CVE-2024-50195, CVE-2024-56606, CVE-2024-56756, CVE-2025-39993)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Media drivers; - File systems infrastructure; - Timer subsystem; - Packet sockets; - Network traffic control; (CVE-2021-47485, CVE-2024-49959, CVE-2024-50195, CVE-2024-53164, CVE-2024-56606, CVE-2025-39993)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Media drivers; - File systems infrastructure; - Timer subsystem; - Packet sockets; - Network traffic control; (CVE-2021-47485, CVE-2024-49959, CVE-2024-50195, CVE-2024-53164, CVE-2024-56606, CVE-2025-39993)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ceph distributed file system; - JFFS2 file system; - Timer subsystem; - USB sound devices; (CVE-2024-26689, CVE-2024-53197, CVE-2024-57850, CVE-2025-38352)

FEDORA-2026-e39149a8a0 Packages in this update:

• xen-4.19.4-2.fc42

Update description:

x86: buffer overrun with shadow paging + tracing [XSA-477, CVE-2025-58150] x86: incomplete IBPB for vCPU isolation [XSA-479, CVE-2026-23553]

FEDORA-2026-847455954a Packages in this update:

• k9s-0.50.18-1.fc43

Update description:

Update to version 0.50.18

FEDORA-2026-2c53d4d272 Packages in this update:

• mingw-glib2-2.84.3-3.fc42

Update description:

Backport fixes for CVE-2026-1484, CVE-2026-1485, CVE-2026-1489.

FEDORA-2026-607c3364fd Packages in this update:

• mingw-glib2-2.86.3-3.fc43

Update description:

Backport fixes for CVE-2026-1484, CVE-2026-1485, CVE-2026-1489.

Version:next-20260129 (linux-next) Released:2026-01-29

Shin Ando discovered that the Xpdf toolkit embedded in TeX Live incorrectly handled memory when decoding certain data streams. An attacker could possibly use this issue to cause TeX Live to crash, resulting in a denial of service, or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-24106, CVE-2022-24107) It was discovered that TeX Live allowed documents to make arbitrary network requests. If a user or automated system were tricked into opening a specially crafted document, a remote attacker could possibly use this issue to exfiltrate sensitive information, or perform other network-related attacks. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2023-32668) It was discovered that TeX Live incorrectly handled certain TrueType fonts. If a user or automated system were tricked into opening a specially crafted TrueType font, a remote attacker could use this issue to cause TeX Live to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2024-25262)