Fedora Security Advisories

tigervnc-1.16.2-2.fc42

8 hours 32 minutes ago
FEDORA-2026-0b633ecc7c Packages in this update:
  • tigervnc-1.16.2-2.fc42
Update description:

Update to xserver 21.1.22, CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, CVE-2026-34003

tigervnc-1.16.2-2.fc43

8 hours 32 minutes ago
FEDORA-2026-492e92b32d Packages in this update:
  • tigervnc-1.16.2-2.fc43
Update description:

Update to xserver 21.1.22, CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, CVE-2026-34003

rpki-client-9.8-1.el10_3

16 hours 49 minutes ago
FEDORA-EPEL-2026-d987e77392 Packages in this update:
  • rpki-client-9.8-1.el10_3
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.fc42

16 hours 49 minutes ago
FEDORA-2026-f7b4693f9d Packages in this update:
  • rpki-client-9.8-1.fc42
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.el9

16 hours 49 minutes ago
FEDORA-EPEL-2026-fa0a18146b Packages in this update:
  • rpki-client-9.8-1.el9
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.el8

16 hours 49 minutes ago
FEDORA-EPEL-2026-30fa3bab72 Packages in this update:
  • rpki-client-9.8-1.el8
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.fc43

16 hours 49 minutes ago
FEDORA-2026-27892c9184 Packages in this update:
  • rpki-client-9.8-1.fc43
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.el10_1

16 hours 49 minutes ago
FEDORA-EPEL-2026-4b1768b6b3 Packages in this update:
  • rpki-client-9.8-1.el10_1
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.el10_2

16 hours 49 minutes ago
FEDORA-EPEL-2026-861d7dd961 Packages in this update:
  • rpki-client-9.8-1.el10_2
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.

rpki-client-9.8-1.fc44

16 hours 49 minutes ago
FEDORA-2026-879659f6c2 Packages in this update:
  • rpki-client-9.8-1.fc44
Update description: rpki-client 9.8
  • Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling.
  • Fixed an accounting issue in HTTP gzip compression detection.
  • Added a warning in extra verbose mode (-vv) about standards non-compliant Issuer and Subject ASN.1 string encodings.
  • Added a check for canonical encoding of ASPA eContent in alignment with draft-ietf-sidrops-aspa-profile-22.
  • Ensure that a repository timeout correctly stops repository processing.
  • Fixed a defect in Canonical Cache Representation ROAIPAddressFamily sort order. As a result, rpki-client 9.8 cannot parse rpki-client 9.7's .ccr files and vice versa.
  • Fixed an issue in the parser for the locally configured constraints.
  • A malicious RRDP Publication Server can cause a NULL dereference.
  • A malicious RPKI Publication Server can cause an incorrect error exit.
Checked
14 minutes 47 seconds ago