mingw-LibRaw-0.22.0-3.fc44
FEDORA-2026-6d5ed8d82d
Packages in this update:
- mingw-LibRaw-0.22.0-3.fc44
Backport fixes for CVE-2026-5318 and CVE-2026-5342.
Aggregator
USN-8148-3: Linux kernel (Real-time) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)
pgadmin4-9.14-1.fc44
FEDORA-2026-e54aebce7c
Packages in this update:
- pgadmin4-9.14-1.fc44
Update to lodash 9.14.
pgadmin4-9.14-1.fc43
FEDORA-2026-ead60fa20d
Packages in this update:
- pgadmin4-9.14-1.fc43
Update to lodash 9.14.
pgadmin4-9.14-1.fc42
FEDORA-2026-5e39475fb3
Packages in this update:
- pgadmin4-9.14-1.fc42
Update to lodash 9.14.
mupdf-1.25.4-5.el10_3
FEDORA-EPEL-2026-7bead9ad13
Packages in this update:
- mupdf-1.25.4-5.el10_3
fix CVE-2026-3308 (rhbz#2454359)
USN-8148-2: Linux kernel (FIPS) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)
USN-8145-2: Linux kernel (FIPS) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM64 architecture;
- Cryptographic API;
- UDF file system;
- NFC subsystem;
- Network traffic control;
(CVE-2024-46777, CVE-2025-21735, CVE-2025-37849, CVE-2026-23060,
CVE-2026-23074)
USN-8143-2: Linux kernel (FIPS) vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- GPU drivers;
- BTRFS file system;
- GFS2 file system;
- UDF file system;
- NFC subsystem;
- Network traffic control;
(CVE-2021-47142, CVE-2021-47145, CVE-2021-47254, CVE-2024-46777,
CVE-2025-21735, CVE-2026-23060, CVE-2026-23074)
mupdf-1.26.3-6.fc42
FEDORA-2026-b56fe1f040
Packages in this update:
- mupdf-1.26.3-6.fc42
fix CVE-2026-3308 (rhbz#2454360)
mupdf-1.27.1-10.fc43
FEDORA-2026-7a9c0c8c04
Packages in this update:
- mupdf-1.27.1-10.fc43
fix CVE-2026-3308 (rhbz#2454361)
mupdf-1.27.1-10.fc44
FEDORA-2026-0ebdbc98c5
Packages in this update:
- mupdf-1.27.1-10.fc44
fix CVE-2026-3308 (rhbz#2454361)
mupdf-1.27.1-10.fc45
FEDORA-2026-563f85e690
Packages in this update:
- mupdf-1.27.1-10.fc45
Automatic update for mupdf-1.27.1-10.fc45.
Changelog * Thu Apr 2 2026 Michael J Gruber <mjg@fedoraproject.org> - 1.27.1-10 - fix CVE-2026-3308 (rhbz#2454361)USN-8146-1: libjxl vulnerability
Daniel Novomeský discovered that libjxl did not properly manage memory when
decoding certain files. An attacker could use this issue to cause
libjxl to crash, resulting in denial of service, or possibly execute
arbitrary code.
USN-8149-1: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)
USN-8148-1: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- Netfilter;
- Network traffic control;
(CVE-2026-23060, CVE-2026-23074, CVE-2026-23111)
chromium-146.0.7680.177-1.el10_1
FEDORA-EPEL-2026-3dc5de63cc
Packages in this update:
- chromium-146.0.7680.177-1.el10_1
Update to 146.0.7680.177
- High CVE-2026-5273: Use after free in CSS
- High CVE-2026-5272: Heap buffer overflow in GPU
- High CVE-2026-5274: Integer overflow in Codecs
- High CVE-2026-5275: Heap buffer overflow in ANGLE
- High CVE-2026-5276: Insufficient policy enforcement in WebUSB
- High CVE-2026-5277: Integer overflow in ANGLE
- High CVE-2026-5278: Use after free in Web MIDI
- High CVE-2026-5279: Object corruption in V8
- High CVE-2026-5280: Use after free in WebCodecs
- High CVE-2026-5281: Use after free in Dawn
- High CVE-2026-5282: Out of bounds read in WebCodecs
- High CVE-2026-5283: Inappropriate implementation in ANGLE
- High CVE-2026-5284: Use after free in Dawn
- High CVE-2026-5285: Use after free in WebGL
- High CVE-2026-5286: Use after free in Dawn
- High CVE-2026-5287: Use after free in PDF
- High CVE-2026-5288: Use after free in WebView
- High CVE-2026-5289: Use after free in Navigation
- High CVE-2026-5290: Use after free in Compositing
- Medium CVE-2026-5291: Inappropriate implementation in WebGL
- Medium CVE-2026-5292: Out of bounds read in WebCodecs
chromium-146.0.7680.177-1.el9
FEDORA-EPEL-2026-6a5f534eb8
Packages in this update:
- chromium-146.0.7680.177-1.el9
Update to 146.0.7680.177
- High CVE-2026-5273: Use after free in CSS
- High CVE-2026-5272: Heap buffer overflow in GPU
- High CVE-2026-5274: Integer overflow in Codecs
- High CVE-2026-5275: Heap buffer overflow in ANGLE
- High CVE-2026-5276: Insufficient policy enforcement in WebUSB
- High CVE-2026-5277: Integer overflow in ANGLE
- High CVE-2026-5278: Use after free in Web MIDI
- High CVE-2026-5279: Object corruption in V8
- High CVE-2026-5280: Use after free in WebCodecs
- High CVE-2026-5281: Use after free in Dawn
- High CVE-2026-5282: Out of bounds read in WebCodecs
- High CVE-2026-5283: Inappropriate implementation in ANGLE
- High CVE-2026-5284: Use after free in Dawn
- High CVE-2026-5285: Use after free in WebGL
- High CVE-2026-5286: Use after free in Dawn
- High CVE-2026-5287: Use after free in PDF
- High CVE-2026-5288: Use after free in WebView
- High CVE-2026-5289: Use after free in Navigation
- High CVE-2026-5290: Use after free in Compositing
- Medium CVE-2026-5291: Inappropriate implementation in WebGL
- Medium CVE-2026-5292: Out of bounds read in WebCodecs
chromium-146.0.7680.177-1.fc44
FEDORA-2026-450ba465fd
Packages in this update:
- chromium-146.0.7680.177-1.fc44
Update to 146.0.7680.177
- High CVE-2026-5273: Use after free in CSS
- High CVE-2026-5272: Heap buffer overflow in GPU
- High CVE-2026-5274: Integer overflow in Codecs
- High CVE-2026-5275: Heap buffer overflow in ANGLE
- High CVE-2026-5276: Insufficient policy enforcement in WebUSB
- High CVE-2026-5277: Integer overflow in ANGLE
- High CVE-2026-5278: Use after free in Web MIDI
- High CVE-2026-5279: Object corruption in V8
- High CVE-2026-5280: Use after free in WebCodecs
- High CVE-2026-5281: Use after free in Dawn
- High CVE-2026-5282: Out of bounds read in WebCodecs
- High CVE-2026-5283: Inappropriate implementation in ANGLE
- High CVE-2026-5284: Use after free in Dawn
- High CVE-2026-5285: Use after free in WebGL
- High CVE-2026-5286: Use after free in Dawn
- High CVE-2026-5287: Use after free in PDF
- High CVE-2026-5288: Use after free in WebView
- High CVE-2026-5289: Use after free in Navigation
- High CVE-2026-5290: Use after free in Compositing
- Medium CVE-2026-5291: Inappropriate implementation in WebGL
- Medium CVE-2026-5292: Out of bounds read in WebCodecs
chromium-146.0.7680.177-1.fc42
FEDORA-2026-2b2e6a12de
Packages in this update:
- chromium-146.0.7680.177-1.fc42
Update to 146.0.7680.177
- High CVE-2026-5273: Use after free in CSS
- High CVE-2026-5272: Heap buffer overflow in GPU
- High CVE-2026-5274: Integer overflow in Codecs
- High CVE-2026-5275: Heap buffer overflow in ANGLE
- High CVE-2026-5276: Insufficient policy enforcement in WebUSB
- High CVE-2026-5277: Integer overflow in ANGLE
- High CVE-2026-5278: Use after free in Web MIDI
- High CVE-2026-5279: Object corruption in V8
- High CVE-2026-5280: Use after free in WebCodecs
- High CVE-2026-5281: Use after free in Dawn
- High CVE-2026-5282: Out of bounds read in WebCodecs
- High CVE-2026-5283: Inappropriate implementation in ANGLE
- High CVE-2026-5284: Use after free in Dawn
- High CVE-2026-5285: Use after free in WebGL
- High CVE-2026-5286: Use after free in Dawn
- High CVE-2026-5287: Use after free in PDF
- High CVE-2026-5288: Use after free in WebView
- High CVE-2026-5289: Use after free in Navigation
- High CVE-2026-5290: Use after free in Compositing
- Medium CVE-2026-5291: Inappropriate implementation in WebGL
- Medium CVE-2026-5292: Out of bounds read in WebCodecs