Aggregator
spoofdpi-1.5.3-1.fc45
- spoofdpi-1.5.3-1.fc45
Automatic update for spoofdpi-1.5.3-1.fc45.
Changelog * Tue Jul 14 2026 Emir Akdag <infraw.linux@proton.me> - 1.5.3-1 - Update spoofdpi to 1.5.3 - Update to 1.5.3 to fix CVE-2026-27145 - Add missing license for go-localereader - Fix build directory case sensitivity issue - Resolves: rhbz#2494220, rhbz#2494389USN-8538-1: alsa-lib vulnerability
yq-4.53.3-1.el9
- yq-4.53.3-1.el9
Update to 4.53.3
yq-4.53.3-1.el10_2
- yq-4.53.3-1.el10_2
Update to 4.53.3
yq-4.53.3-1.el10_3
- yq-4.53.3-1.el10_3
Update to 4.53.3
yq-4.53.3-1.fc43
- yq-4.53.3-1.fc43
Update to 4.53.3
yq-4.53.3-1.fc44
- yq-4.53.3-1.fc44
Update to 4.53.3
USN-8537-1: httplib2 vulnerability
USN-8536-1: MariaDB vulnerabilities
perl-YAML-Syck-1.47-1.el9
- perl-YAML-Syck-1.47-1.el9
This update addresses four libsyck memory-safety CVEs reachable from the default YAML::Syck::Load() path on untrusted input with no special flags:
- CVE-2026-57075 (CWE-125): Out-of-bounds read in the base64 decoder caused by signed-char indexing of the decode table on !!binary input
- CVE-2026-57076 (CWE-416): Use-after-free of an anchor key string shared between the node and the anchors table
- CVE-2026-57077 (CWE-125): One-byte out-of-bounds read in the lexer newline scan during block-scalar parsing (incomplete-fix follow-on to CVE-2025-11683)
- CVE-2026-13713 (CWE-416/CWE-415): Use-after-free / double-free of an anchor node on anchor redefinition, a remote-crash DoS from a 7-byte input
There are also a few other bug-fixes included.
perl-YAML-Syck-1.47-1.el10_3
- perl-YAML-Syck-1.47-1.el10_3
This update addresses four libsyck memory-safety CVEs reachable from the default YAML::Syck::Load() path on untrusted input with no special flags:
- CVE-2026-57075 (CWE-125): Out-of-bounds read in the base64 decoder caused by signed-char indexing of the decode table on !!binary input
- CVE-2026-57076 (CWE-416): Use-after-free of an anchor key string shared between the node and the anchors table
- CVE-2026-57077 (CWE-125): One-byte out-of-bounds read in the lexer newline scan during block-scalar parsing (incomplete-fix follow-on to CVE-2025-11683)
- CVE-2026-13713 (CWE-416/CWE-415): Use-after-free / double-free of an anchor node on anchor redefinition, a remote-crash DoS from a 7-byte input
There are also a few other bug-fixes included.
perl-YAML-Syck-1.47-1.fc44
- perl-YAML-Syck-1.47-1.fc44
This update addresses four libsyck memory-safety CVEs reachable from the default YAML::Syck::Load() path on untrusted input with no special flags:
- CVE-2026-57075 (CWE-125): Out-of-bounds read in the base64 decoder caused by signed-char indexing of the decode table on !!binary input
- CVE-2026-57076 (CWE-416): Use-after-free of an anchor key string shared between the node and the anchors table
- CVE-2026-57077 (CWE-125): One-byte out-of-bounds read in the lexer newline scan during block-scalar parsing (incomplete-fix follow-on to CVE-2025-11683)
- CVE-2026-13713 (CWE-416/CWE-415): Use-after-free / double-free of an anchor node on anchor redefinition, a remote-crash DoS from a 7-byte input
There are also a few other bug-fixes included.
perl-YAML-Syck-1.47-1.fc43
- perl-YAML-Syck-1.47-1.fc43
This update addresses four libsyck memory-safety CVEs reachable from the default YAML::Syck::Load() path on untrusted input with no special flags:
- CVE-2026-57075 (CWE-125): Out-of-bounds read in the base64 decoder caused by signed-char indexing of the decode table on !!binary input
- CVE-2026-57076 (CWE-416): Use-after-free of an anchor key string shared between the node and the anchors table
- CVE-2026-57077 (CWE-125): One-byte out-of-bounds read in the lexer newline scan during block-scalar parsing (incomplete-fix follow-on to CVE-2025-11683)
- CVE-2026-13713 (CWE-416/CWE-415): Use-after-free / double-free of an anchor node on anchor redefinition, a remote-crash DoS from a 7-byte input
There are also a few other bug-fixes included.
perl-YAML-Syck-1.47-1.el10_2
- perl-YAML-Syck-1.47-1.el10_2
This update addresses four libsyck memory-safety CVEs reachable from the default YAML::Syck::Load() path on untrusted input with no special flags:
- CVE-2026-57075 (CWE-125): Out-of-bounds read in the base64 decoder caused by signed-char indexing of the decode table on !!binary input
- CVE-2026-57076 (CWE-416): Use-after-free of an anchor key string shared between the node and the anchors table
- CVE-2026-57077 (CWE-125): One-byte out-of-bounds read in the lexer newline scan during block-scalar parsing (incomplete-fix follow-on to CVE-2025-11683)
- CVE-2026-13713 (CWE-416/CWE-415): Use-after-free / double-free of an anchor node on anchor redefinition, a remote-crash DoS from a 7-byte input
There are also a few other bug-fixes included.
spoofdpi-1.5.3-2.fc43
- spoofdpi-1.5.3-2.fc43
Fix Go version requirement for F43 build compatibility
spoofdpi-1.5.3-1.el9
- spoofdpi-1.5.3-1.el9
Update spoofdpi to 1.5.3
spoofdpi-1.5.3-1.el10_3
- spoofdpi-1.5.3-1.el10_3
Update spoofdpi to 1.5.3
spoofdpi-1.5.3-1.fc44
- spoofdpi-1.5.3-1.fc44
Update spoofdpi to 1.5.3
kernel-7.1.3-201.fc44
- kernel-7.1.3-201.fc44
The 7.1.3-101/201 builds contain an important fix for XFS filesystem users.