Fedora Security Advisories

tmux-3.7b-3.fc43

1 hour 58 minutes ago
FEDORA-2026-7fa12630d5 Packages in this update:
  • tmux-3.7b-3.fc43
Update description:

fdf6afc update to 3.7b fixes rhbz#2498485

CHANGES FROM 3.7a TO 3.7b

  • Fix so that the end of a synchronized update again triggers a redraw.

CHANGES FROM 3.7 TO 3.7a

  • Fix crash in break-pane when no name is provided.

  • Scrollbar options are now cached rather than being looked up for every redraw (issue 5298).

  • Only forbid #( in names, allow #[, empty names, : and .

tmux-3.7b-2.fc44

1 hour 58 minutes ago
FEDORA-2026-f5dd9fb83f Packages in this update:
  • tmux-3.7b-2.fc44
Update description:

fdf6afc update to 3.7b fixes rhbz#2498485

CHANGES FROM 3.7a TO 3.7b

  • Fix so that the end of a synchronized update again triggers a redraw.

CHANGES FROM 3.7 TO 3.7a

  • Fix crash in break-pane when no name is provided.

  • Scrollbar options are now cached rather than being looked up for every redraw (issue 5298).

  • Only forbid #( in names, allow #[, empty names, : and .

sssd-2.12.0-3.fc43

3 hours 5 minutes ago
FEDORA-2026-9ab663dcd4 Packages in this update:
  • sssd-2.12.0-3.fc43
Update description:

CVE fixes: CVE-2026-12610 CVE-2026-14474 CVE-2026-14476 - rhbz#2494777: CVE-2026-12610 sssd: Use-after-free crash in SSSD' 'sssd_pam' process - rhbz#2497650: CVE-2026-14476 sssd: sssd: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypass - rhbz#2497651: CVE-2026-14474 sssd: sssd: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation

sssd-2.13.1-2.fc44

4 hours 1 minute ago
FEDORA-2026-5acfb0243b Packages in this update:
  • sssd-2.13.1-2.fc44
Update description:

CVE fixes: CVE-2026-12610 CVE-2026-14474 CVE-2026-14476 - rhbz#2494777: CVE-2026-12610 sssd: Use-after-free crash in SSSD' 'sssd_pam' process - rhbz#2497650: CVE-2026-14476 sssd: sssd: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypass - rhbz#2497651: CVE-2026-14474 sssd: sssd: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation

ruby-3.4.10-31.fc43

9 hours 7 minutes ago
FEDORA-2026-7b7c2b373e Packages in this update:
  • ruby-3.4.10-31.fc43
Update description:

Ruby 3.4.10 is released. This new version contains severay security bug fixes in zlib, net-imap and erb..

attr-2.6.0-1.fc45

11 hours 35 minutes ago
FEDORA-2026-c7aafa6056 Packages in this update:
  • attr-2.6.0-1.fc45
Update description:

Automatic update for attr-2.6.0-1.fc45.

Changelog * Thu Jul 9 2026 Lukáš Zaoral <lzaoral@redhat.com> - 2.6.0-1 - rebase to the latest upstream release (rhbz#2494157) - CVE-2026-54371 - Symlink Traversal Privilege Escalation via getfattr (rhbz#2494172) - remove a long-overdue workaround for /usr/include/attr/xattr.h

acl-2.4.0-1.fc44

13 hours 10 minutes ago
FEDORA-2026-6b9a652463 Packages in this update:
  • acl-2.4.0-1.fc44
Update description:
  • rebase to v2.4.0 to fix CVE-2026-54369 and CVE-2026-54370

Resolves: CVE-2026-54369 Resolves: CVE-2026-54370

acl-2.4.0-1.fc43

13 hours 10 minutes ago
FEDORA-2026-67504c329b Packages in this update:
  • acl-2.4.0-1.fc43
Update description:
  • rebase to v2.4.0 to fix CVE-2026-54369 and CVE-2026-54370

Resolves: CVE-2026-54369 Resolves: CVE-2026-54370

rust-cargo-rpmstatus-0.2.5-2.fc43

1 day 8 hours ago
FEDORA-2026-6d5a7be3b9 Packages in this update:
  • rust-cargo-rpmstatus-0.2.5-2.fc43
Update description:

Update to 0.2.5 (with dependency updates only), and further update some dependencies. Particularly, quick-xml 0.41 fixes RUSTSEC-2026-0194 and RUSTSEC-2026-0195.

rust-cargo-rpmstatus-0.2.5-2.fc44

1 day 10 hours ago
FEDORA-2026-08f5aab9ed Packages in this update:
  • rust-cargo-rpmstatus-0.2.5-2.fc44
Update description:

Update to 0.2.5 (with dependency updates only), and further update some dependencies. Particularly, quick-xml 0.41 fixes RUSTSEC-2026-0194 and RUSTSEC-2026-0195.

Checked
2 minutes 44 seconds ago