Fedora Security Advisories

libseccomp-2.6.1-2.fc43

3 hours 44 minutes ago
FEDORA-2026-9afc6b6bb3 Packages in this update:
  • libseccomp-2.6.1-2.fc43
Update description: libseccomp 2.6.1 packaging changes
  • Enable Python bindings on Fedora 44+
upstream changes - July 1, 2026
  • Update the syscall table for Linux v7.1.0-rc4
  • Fix incorrect 64-bit comparison merge that can weaken libseccomp filters. See GitHub Advisory GHSA-4q85-33p6-j5g6
  • Fix issue where oversized libseccomp filters can trigger a double free. See GitHub Advisory GHSA-46fr-jh49-xvhx
  • Fix issue where oversized libseccomp filters can trigger a heap corruption. See GitHub Advisory GHSA-2hqh-5c36-grrm
  • Fix struct aliasing undefined behavior in the internal libseccomp hash algorithm
  • Fix issue where extraneous bytes were being copied to the destination buffer in seccomp_export_bpf_mem()
  • Fix a bug where merged libseccomp filters failed to merge the notify_used flag, leading to no listener file descriptor being generated
  • Update python shebang to point to python3
  • Add documentation for seccomp_transaction_start()
  • Since support for s390 has been removed from the upstream Linux kernel, freeze libseccomp's s390 syscall table at Linux v6.18

libseccomp-2.6.1-2.fc44

3 hours 44 minutes ago
FEDORA-2026-752186819e Packages in this update:
  • libseccomp-2.6.1-2.fc44
Update description: libseccomp 2.6.1 packaging changes
  • Enable Python bindings on Fedora 44+
upstream changes - July 1, 2026
  • Update the syscall table for Linux v7.1.0-rc4
  • Fix incorrect 64-bit comparison merge that can weaken libseccomp filters. See GitHub Advisory GHSA-4q85-33p6-j5g6
  • Fix issue where oversized libseccomp filters can trigger a double free. See GitHub Advisory GHSA-46fr-jh49-xvhx
  • Fix issue where oversized libseccomp filters can trigger a heap corruption. See GitHub Advisory GHSA-2hqh-5c36-grrm
  • Fix struct aliasing undefined behavior in the internal libseccomp hash algorithm
  • Fix issue where extraneous bytes were being copied to the destination buffer in seccomp_export_bpf_mem()
  • Fix a bug where merged libseccomp filters failed to merge the notify_used flag, leading to no listener file descriptor being generated
  • Update python shebang to point to python3
  • Add documentation for seccomp_transaction_start()
  • Since support for s390 has been removed from the upstream Linux kernel, freeze libseccomp's s390 syscall table at Linux v6.18

openssh-10.2p1-13.fc44

1 day 6 hours ago
FEDORA-2026-c9d8542bb3 Packages in this update:
  • openssh-10.2p1-13.fc44
Update description:
  • CVE-2026-59996: Fix remote glob result of ".." causing files to be placed in unintended parent directories when scp performs remote-to-remote copy via the local host
  • CVE-2026-60002: Fix use-after-free in cached hostkey during key re-exchange

openssh-10.0p1-11.fc43

1 day 6 hours ago
FEDORA-2026-169fd93089 Packages in this update:
  • openssh-10.0p1-11.fc43
Update description:
  • CVE-2026-59996: Fix remote glob result of ".." causing files to be placed in unintended parent directories when scp performs remote-to-remote copy via the local host
  • CVE-2026-60002: Fix use-after-free in cached hostkey during key re-exchange

moby-engine-29.6.2-1.fc43

1 day 7 hours ago
FEDORA-2026-64ca3441c3 Packages in this update:
  • moby-engine-29.6.2-1.fc43
Update description:
  • Update to release v29.6.2
  • Resolves: rhbz#2496437
  • Upstream security fixes
    • GHSA-hw3h-2gp9-cxpv
    • GHSA-qx3x-mv6r-52p6
    • GHSA-32pv-7hq5-qhwq
    • GHSA-g2h8-426c-7976
    • GHSA-388v-wmr2-g2v2

chromium-150.0.7871.124-1.el10_3

1 day 14 hours ago
FEDORA-EPEL-2026-012b021e70 Packages in this update:
  • chromium-150.0.7871.124-1.el10_3
Update description:

Update to 150.0.7871.124

* CVE-2026-15764: Use after free in Ozone * CVE-2026-15765: Use after free in Ozone * CVE-2026-15766: Uninitialized Use in Skia * CVE-2026-15767: Heap buffer overflow in libyuv * CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas * CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming * CVE-2026-15770: Uninitialized Use in V8 * CVE-2026-15771: Insufficient validation of untrusted input in Media * CVE-2026-15772: Use after free in GPU * CVE-2026-15773: Use after free in Core * CVE-2026-15774: Use after free in Skia * CVE-2026-15775: Insufficient policy enforcement in V8 * CVE-2026-15776: Type Confusion in V8 * CVE-2026-15777: Use after free in UI * CVE-2026-15778: Insufficient validation of untrusted input in Navigation

chromium-150.0.7871.124-1.el10_2

1 day 14 hours ago
FEDORA-EPEL-2026-3bd3da0297 Packages in this update:
  • chromium-150.0.7871.124-1.el10_2
Update description:

Update to 150.0.7871.124

* CVE-2026-15764: Use after free in Ozone * CVE-2026-15765: Use after free in Ozone * CVE-2026-15766: Uninitialized Use in Skia * CVE-2026-15767: Heap buffer overflow in libyuv * CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas * CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming * CVE-2026-15770: Uninitialized Use in V8 * CVE-2026-15771: Insufficient validation of untrusted input in Media * CVE-2026-15772: Use after free in GPU * CVE-2026-15773: Use after free in Core * CVE-2026-15774: Use after free in Skia * CVE-2026-15775: Insufficient policy enforcement in V8 * CVE-2026-15776: Type Confusion in V8 * CVE-2026-15777: Use after free in UI * CVE-2026-15778: Insufficient validation of untrusted input in Navigation

chromium-150.0.7871.124-1.fc43

1 day 14 hours ago
FEDORA-2026-32e3e23696 Packages in this update:
  • chromium-150.0.7871.124-1.fc43
Update description:

Update to 150.0.7871.124

* CVE-2026-15764: Use after free in Ozone * CVE-2026-15765: Use after free in Ozone * CVE-2026-15766: Uninitialized Use in Skia * CVE-2026-15767: Heap buffer overflow in libyuv * CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas * CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming * CVE-2026-15770: Uninitialized Use in V8 * CVE-2026-15771: Insufficient validation of untrusted input in Media * CVE-2026-15772: Use after free in GPU * CVE-2026-15773: Use after free in Core * CVE-2026-15774: Use after free in Skia * CVE-2026-15775: Insufficient policy enforcement in V8 * CVE-2026-15776: Type Confusion in V8 * CVE-2026-15777: Use after free in UI * CVE-2026-15778: Insufficient validation of untrusted input in Navigation

chromium-150.0.7871.124-1.el9

1 day 14 hours ago
FEDORA-EPEL-2026-72397f334b Packages in this update:
  • chromium-150.0.7871.124-1.el9
Update description:

Update to 150.0.7871.124

* CVE-2026-15764: Use after free in Ozone * CVE-2026-15765: Use after free in Ozone * CVE-2026-15766: Uninitialized Use in Skia * CVE-2026-15767: Heap buffer overflow in libyuv * CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas * CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming * CVE-2026-15770: Uninitialized Use in V8 * CVE-2026-15771: Insufficient validation of untrusted input in Media * CVE-2026-15772: Use after free in GPU * CVE-2026-15773: Use after free in Core * CVE-2026-15774: Use after free in Skia * CVE-2026-15775: Insufficient policy enforcement in V8 * CVE-2026-15776: Type Confusion in V8 * CVE-2026-15777: Use after free in UI * CVE-2026-15778: Insufficient validation of untrusted input in Navigation

chromium-150.0.7871.124-1.fc44

1 day 14 hours ago
FEDORA-2026-7437330b17 Packages in this update:
  • chromium-150.0.7871.124-1.fc44
Update description:

Update to 150.0.7871.124

* CVE-2026-15764: Use after free in Ozone * CVE-2026-15765: Use after free in Ozone * CVE-2026-15766: Uninitialized Use in Skia * CVE-2026-15767: Heap buffer overflow in libyuv * CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas * CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming * CVE-2026-15770: Uninitialized Use in V8 * CVE-2026-15771: Insufficient validation of untrusted input in Media * CVE-2026-15772: Use after free in GPU * CVE-2026-15773: Use after free in Core * CVE-2026-15774: Use after free in Skia * CVE-2026-15775: Insufficient policy enforcement in V8 * CVE-2026-15776: Type Confusion in V8 * CVE-2026-15777: Use after free in UI * CVE-2026-15778: Insufficient validation of untrusted input in Navigation
Checked
6 minutes 43 seconds ago