antlr4-project-4.13.2-14.fc43
- antlr4-project-4.13.2-14.fc43
This update contains a fix for CVE-2026-13503.
This update contains a fix for CVE-2026-13503.
This update contains a fix for CVE-2026-13503.
Version 2.5.2 of opam fixes CVE-2026-57825. See https://github.com/ocaml/opam/releases/tag/2.5.2 for more information.
Version 2.5.2 of opam fixes CVE-2026-57825. See https://github.com/ocaml/opam/releases/tag/2.5.2 for more information.
Backport fixes for CVE-2026-48858 (ftp SSRF), CVE-2026-49759 (SCTP DoS), CVE-2026-48860 (dist-over-TLS auth bypass), CVE-2026-54886 (ssh SFTP DoS), CVE-2026-54891 (TLS handshake data injection), and CVE-2026-55952 (TLS 1.3 session ticket DoS). These are fixed upstream in OTP 27.x (rawhide/f45); backported here to the OTP 26.x line.
Backport fixes for CVE-2026-48858 (ftp SSRF), CVE-2026-49759 (SCTP DoS), CVE-2026-48860 (dist-over-TLS auth bypass), CVE-2026-54886 (ssh SFTP DoS), CVE-2026-54891 (TLS handshake data injection), and CVE-2026-55952 (TLS 1.3 session ticket DoS). These are fixed upstream in OTP 27.x (rawhide/f45); backported here to the OTP 26.x line.
1.34.7 accidentally broke the API compatibility, this is fixed in 1.34.8.
1.2.9, CVE fixes
Update PyO3 to 0.29, fixing RUSTSEC-2026-0194 and RUSTSEC-2026-0195.
Update PyO3 to 0.29, fixing RUSTSEC-2026-0194 and RUSTSEC-2026-0195.
Update uv / python-uv-build to 0.11.28, with significant hardening of zip file handling against parser differentials.
Update uv to 0.11.28, with significant hardening of zip file handling against parser differentials.
Update uv / python-uv-build to 0.11.28, with significant hardening of zip file handling against parser differentials.
Automatic update for sssd-2.13.1-3.fc45.
Changelog * Wed Jul 8 2026 Sumit Bose <sbose@redhat.com> - 2.13.1-3 - CVE fixes: CVE-2026-12610 CVE-2026-14474 CVE-2026-14476 - rhbz#2494777: CVE-2026-12610 sssd: Use-after-free crash in SSSD' 'sssd_pam' process - rhbz#2497650: CVE-2026-14476 sssd: sssd: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypass - rhbz#2497651: CVE-2026-14474 sssd: sssd: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalationUpdate to the latest version to bring fixes for CVE-2026-45409 and CVE-2024-3651 into the stable releases.
Update to the latest version to bring fixes for CVE-2026-45409 and CVE-2024-3651 into the stable releases.