Fedora Security Advisories

• python-diskcache-5.6.3-12.fc42

Incorporate patch from Sam Doran to fix CVE-2025-69872

• python-diskcache-5.6.3-12.fc44

Incorporate patch from Sam Doran to fix CVE-2025-69872

• python-diskcache-5.6.3-12.fc43

Incorporate patch from Sam Doran to fix CVE-2025-69872

• chromium-146.0.7680.71-1.el9

Update to 146.0.7680.71

• CVE-2026-3913: Heap buffer overflow in WebML
• CVE-2026-3914: Integer overflow in WebML
• CVE-2026-3915: Heap buffer overflow in WebML
• CVE-2026-3916: Out of bounds read in Web Speech
• CVE-2026-3917: Use after free in Agents
• CVE-2026-3918: Use after free in WebMCP
• CVE-2026-3919: Use after free in Extensions
• CVE-2026-3920: Out of bounds memory access in WebML
• CVE-2026-3921: Use after free in TextEncoding
• CVE-2026-3922: Use after free in MediaStream
• CVE-2026-3923: Use after free in WebMIDI
• CVE-2026-3924: Use after free in WindowDialog
• CVE-2026-3925: Incorrect security UI in LookalikeChecks
• CVE-2026-3926: Out of bounds read in V8
• CVE-2026-3927: Incorrect security UI in PictureInPicture
• CVE-2026-3928: Insufficient policy enforcement in Extensions
• CVE-2026-3929: Side-channel information leakage in ResourceTiming
• CVE-2026-3930: Unsafe navigation in Navigation
• CVE-2026-3931: Heap buffer overflow in Skia
• CVE-2026-3932: Insufficient policy enforcement in PDF
• CVE-2026-3934: Insufficient policy enforcement in ChromeDriver
• CVE-2026-3935: Incorrect security UI in WebAppInstalls
• CVE-2026-3936: Use after free in WebView
• CVE-2026-3937: Incorrect security UI in Downloads
• CVE-2026-3938: Insufficient policy enforcement in Clipboard
• CVE-2026-3939: Insufficient policy enforcement in PDF
• CVE-2026-3940: Insufficient policy enforcement in DevTools
• CVE-2026-3941: Insufficient policy enforcement in DevTools
• CVE-2026-3942: Incorrect security UI in PictureInPicture

• chromium-146.0.7680.71-1.el10_1

Update to 146.0.7680.71

• CVE-2026-3913: Heap buffer overflow in WebML
• CVE-2026-3914: Integer overflow in WebML
• CVE-2026-3915: Heap buffer overflow in WebML
• CVE-2026-3916: Out of bounds read in Web Speech
• CVE-2026-3917: Use after free in Agents
• CVE-2026-3918: Use after free in WebMCP
• CVE-2026-3919: Use after free in Extensions
• CVE-2026-3920: Out of bounds memory access in WebML
• CVE-2026-3921: Use after free in TextEncoding
• CVE-2026-3922: Use after free in MediaStream
• CVE-2026-3923: Use after free in WebMIDI
• CVE-2026-3924: Use after free in WindowDialog
• CVE-2026-3925: Incorrect security UI in LookalikeChecks
• CVE-2026-3926: Out of bounds read in V8
• CVE-2026-3927: Incorrect security UI in PictureInPicture
• CVE-2026-3928: Insufficient policy enforcement in Extensions
• CVE-2026-3929: Side-channel information leakage in ResourceTiming
• CVE-2026-3930: Unsafe navigation in Navigation
• CVE-2026-3931: Heap buffer overflow in Skia
• CVE-2026-3932: Insufficient policy enforcement in PDF
• CVE-2026-3934: Insufficient policy enforcement in ChromeDriver
• CVE-2026-3935: Incorrect security UI in WebAppInstalls
• CVE-2026-3936: Use after free in WebView
• CVE-2026-3937: Incorrect security UI in Downloads
• CVE-2026-3938: Insufficient policy enforcement in Clipboard
• CVE-2026-3939: Insufficient policy enforcement in PDF
• CVE-2026-3940: Insufficient policy enforcement in DevTools
• CVE-2026-3941: Insufficient policy enforcement in DevTools
• CVE-2026-3942: Incorrect security UI in PictureInPicture

• chromium-146.0.7680.71-1.fc42

Update to 146.0.7680.71

• CVE-2026-3913: Heap buffer overflow in WebML
• CVE-2026-3914: Integer overflow in WebML
• CVE-2026-3915: Heap buffer overflow in WebML
• CVE-2026-3916: Out of bounds read in Web Speech
• CVE-2026-3917: Use after free in Agents
• CVE-2026-3918: Use after free in WebMCP
• CVE-2026-3919: Use after free in Extensions
• CVE-2026-3920: Out of bounds memory access in WebML
• CVE-2026-3921: Use after free in TextEncoding
• CVE-2026-3922: Use after free in MediaStream
• CVE-2026-3923: Use after free in WebMIDI
• CVE-2026-3924: Use after free in WindowDialog
• CVE-2026-3925: Incorrect security UI in LookalikeChecks
• CVE-2026-3926: Out of bounds read in V8
• CVE-2026-3927: Incorrect security UI in PictureInPicture
• CVE-2026-3928: Insufficient policy enforcement in Extensions
• CVE-2026-3929: Side-channel information leakage in ResourceTiming
• CVE-2026-3930: Unsafe navigation in Navigation
• CVE-2026-3931: Heap buffer overflow in Skia
• CVE-2026-3932: Insufficient policy enforcement in PDF
• CVE-2026-3934: Insufficient policy enforcement in ChromeDriver
• CVE-2026-3935: Incorrect security UI in WebAppInstalls
• CVE-2026-3936: Use after free in WebView
• CVE-2026-3937: Incorrect security UI in Downloads
• CVE-2026-3938: Insufficient policy enforcement in Clipboard
• CVE-2026-3939: Insufficient policy enforcement in PDF
• CVE-2026-3940: Insufficient policy enforcement in DevTools
• CVE-2026-3941: Insufficient policy enforcement in DevTools
• CVE-2026-3942: Incorrect security UI in PictureInPicture

• libtasn1-4.21.0-1.fc44

Update to 4.21.0; fixes CVE-2025-13151

• systemd-258.7-1.fc43

• A bunch of bugfixes
• More sanitization for invalid values received from hardware and firmware

• systemd-259.5-1.fc44

More bugfixes.

• A bunch of bugfixes
• More sanitization for invalid values received from hardware and firmware

• scitokens-cpp-1.4.1-1.el10_3

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el10_1

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el8

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc44

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc42

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.fc43

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• scitokens-cpp-1.4.1-1.el9

• Fix scope path boundary validation to deny sibling-prefix authorization bypasses
• Reject parent-directory traversal in scope paths, including encoded traversal forms
• Add regression tests covering sibling-prefix and traversal authorization checks

• python-scitokens-1.9.7-1.fc43

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.el9

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.el8

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks

• python-scitokens-1.9.7-1.fc42

• Remove legacy parent SciToken chaining behavior from token initialization and claim handling
• Harden Enforcer scope path traversal validation (including encoded traversal checks)
• Clean up documentation references to parent/chained SciTokens

• Fix SQL injection risk in KeyCache by using parameterized SQLite queries
• Prevent sibling-path authorization bypass in Enforcer scope checks