Fedora Security Advisories

perl-Crypt-URandom-0.55-1.fc42

Fedora Security Advisories

2 hours 4 minutes ago

FEDORA-2026-b0bf6e9c9b Packages in this update:

perl-Crypt-URandom-0.55-1.fc42

Update description:

This release fixes CVE-2026-2474 (a heap buffer overflow) and handling failed read syscalls.

perl-Crypt-URandom-0.55-1.fc43

Fedora Security Advisories

2 hours 16 minutes ago

FEDORA-2026-88f1155b8b Packages in this update:

perl-Crypt-URandom-0.55-1.fc43

Update description:

This release fixes CVE-2026-2474 (a heap buffer overflow) and handling failed read syscalls.

perl-Crypt-URandom-0.55-1.fc44

Fedora Security Advisories

2 hours 16 minutes ago

FEDORA-2026-eb6b1039eb Packages in this update:

perl-Crypt-URandom-0.55-1.fc44

Update description:

This release fixes CVE-2026-2474 (a heap buffer overflow) and handling failed read syscalls.

avr-binutils-2.45-4.fc43.1

Fedora Security Advisories

14 hours 12 minutes ago

FEDORA-2026-10cccbf560 Packages in this update:

avr-binutils-2.45-4.fc43.1

Update description:

fix CVE-2025-11083: heap-based overflow
fix CVE-2025-11082: heap-based overflow
fix CVE-2025-11081: out-of-bounds read

avr-binutils-2.45-4.fc42.1

Fedora Security Advisories

14 hours 14 minutes ago

FEDORA-2026-405dab5af2 Packages in this update:

avr-binutils-2.45-4.fc42.1

Update description:

fix CVE-2025-11083: heap-based overflow
fix CVE-2025-11082: heap-based overflow
fix CVE-2025-11081: out-of-bounds read

erlang-26.2.5.17-1.fc43

Fedora Security Advisories

1 day 18 hours ago

FEDORA-2026-8a15e7a423 Packages in this update:

erlang-26.2.5.17-1.fc43

Update description:

Erlang ver. 26.2.5.17

erlang-26.2.5.17-1.fc42

Fedora Security Advisories

1 day 18 hours ago

FEDORA-2026-d51972eee3 Packages in this update:

erlang-26.2.5.17-1.fc42

Update description:

Erlang ver. 26.2.5.17

nextcloud-32.0.6-1.el10_2

Fedora Security Advisories

1 day 21 hours ago

FEDORA-EPEL-2026-5322e7a12f Packages in this update:

nextcloud-32.0.6-1.el10_2

Update description:

32.0.6 release

nextcloud-32.0.6-1.fc42

Fedora Security Advisories

1 day 21 hours ago

FEDORA-2026-889607c7a0 Packages in this update:

nextcloud-32.0.6-1.fc42

Update description:

32.0.6 release

nextcloud-32.0.6-1.el10_1

Fedora Security Advisories

1 day 21 hours ago

FEDORA-EPEL-2026-7613774651 Packages in this update:

nextcloud-32.0.6-1.el10_1

Update description:

32.0.6 release

nextcloud-32.0.6-1.fc43

Fedora Security Advisories

1 day 21 hours ago

FEDORA-2026-ae48fa379e Packages in this update:

nextcloud-32.0.6-1.fc43

Update description:

32.0.6 release

nextcloud-32.0.6-1.fc44

Fedora Security Advisories

1 day 21 hours ago

FEDORA-2026-94519b94d8 Packages in this update:

nextcloud-32.0.6-1.fc44

Update description:

32.0.6 release

pgadmin4-9.12-2.fc42

Fedora Security Advisories

2 days 5 hours ago

FEDORA-2026-9a4d6dd8eb Packages in this update:

pgadmin4-9.12-2.fc42

Update description:

Refresh vendored bundle. fixes multiple CVEs.

pgadmin4-9.12-2.fc44

Fedora Security Advisories

2 days 5 hours ago

FEDORA-2026-2792616d35 Packages in this update:

pgadmin4-9.12-2.fc44

Update description:

Refresh vendored bundle. fixes multiple CVEs.

pgadmin4-9.12-2.fc43

Fedora Security Advisories

2 days 5 hours ago

FEDORA-2026-a0d40b97a8 Packages in this update:

pgadmin4-9.12-2.fc43

Update description:

Refresh vendored bundle. fixes multiple CVEs.

cef-145.0.25^chromium145.0.7632.75-4.fc44

Fedora Security Advisories

2 days 14 hours ago

FEDORA-2026-376794abc1 Packages in this update:

cef-145.0.25^chromium145.0.7632.75-4.fc44

Update description:

Update to cef-145.0.25 + chromium 145.0.7632.75

CVE-2026-1861: Heap buffer overflow in libvpx
CVE-2026-1862: Type Confusion in V8
CVE-2026-2313: Use after free in CSS
CVE-2026-2314: Heap buffer overflow in Codecs
CVE-2026-2315: Inappropriate implementation in WebGPU
CVE-2026-2316: Insufficient policy enforcement in Frames
CVE-2026-2317: Inappropriate implementation in Animation
CVE-2026-2318: Inappropriate implementation in PictureInPicture
CVE-2026-2319: Race in DevTools
CVE-2026-2320: Inappropriate implementation in File input
CVE-2026-2321: Use after free in Ozone
CVE-2026-2322: Inappropriate implementation in File input
CVE-2026-2323: Inappropriate implementation in Downloads
CVE-2026-2441: Use after free in CSS

cef-145.0.25^chromium145.0.7632.75-4.fc42

Fedora Security Advisories

2 days 14 hours ago

FEDORA-2026-a48b5f36ec Packages in this update:

cef-145.0.25^chromium145.0.7632.75-4.fc42

Update description:

Update to cef-145.0.25 + chromium 145.0.7632.75

CVE-2026-1861: Heap buffer overflow in libvpx
CVE-2026-1862: Type Confusion in V8
CVE-2026-2313: Use after free in CSS
CVE-2026-2314: Heap buffer overflow in Codecs
CVE-2026-2315: Inappropriate implementation in WebGPU
CVE-2026-2316: Insufficient policy enforcement in Frames
CVE-2026-2317: Inappropriate implementation in Animation
CVE-2026-2318: Inappropriate implementation in PictureInPicture
CVE-2026-2319: Race in DevTools
CVE-2026-2320: Inappropriate implementation in File input
CVE-2026-2321: Use after free in Ozone
CVE-2026-2322: Inappropriate implementation in File input
CVE-2026-2323: Inappropriate implementation in Downloads
CVE-2026-2441: Use after free in CSS

cef-145.0.25^chromium145.0.7632.75-4.fc43

Fedora Security Advisories

2 days 14 hours ago

FEDORA-2026-0bced5158d Packages in this update:

cef-145.0.25^chromium145.0.7632.75-4.fc43

Update description:

Update to cef-145.0.25 + chromium 145.0.7632.75

CVE-2026-1861: Heap buffer overflow in libvpx
CVE-2026-1862: Type Confusion in V8
CVE-2026-2313: Use after free in CSS
CVE-2026-2314: Heap buffer overflow in Codecs
CVE-2026-2315: Inappropriate implementation in WebGPU
CVE-2026-2316: Insufficient policy enforcement in Frames
CVE-2026-2317: Inappropriate implementation in Animation
CVE-2026-2318: Inappropriate implementation in PictureInPicture
CVE-2026-2319: Race in DevTools
CVE-2026-2320: Inappropriate implementation in File input
CVE-2026-2321: Use after free in Ozone
CVE-2026-2322: Inappropriate implementation in File input
CVE-2026-2323: Inappropriate implementation in Downloads
CVE-2026-2441: Use after free in CSS

python-django4.2-4.2.28-1.el9

Fedora Security Advisories

3 days 9 hours ago

FEDORA-EPEL-2026-e4c468db6d Packages in this update:

python-django4.2-4.2.28-1.el9

Update description:

Fixes CVE-2025-13473: Username enumeration through timing difference in mod_wsgi authentication handler
Fixes CVE-2025-14550: Potential denial-of-service vulnerability via repeated headers when using ASGI
Fixes CVE-2026-1207: Potential SQL injection via raster lookups on PostGIS
Fixes CVE-2026-1285: Potential denial-of-service vulnerability in django.utils.text.Truncator HTML methods
Fixes CVE-2026-1287: Potential SQL injection in column aliases via control characters
Fixes CVE-2026-1312: Potential SQL injection via QuerySet.order_by and FilteredRelation

python-django4.2-4.2.28-1.fc42

Fedora Security Advisories

3 days 9 hours ago

FEDORA-2026-ca3d81129a Packages in this update:

python-django4.2-4.2.28-1.fc42

Update description:

Fixes CVE-2025-13473: Username enumeration through timing difference in mod_wsgi authentication handler
Fixes CVE-2025-14550: Potential denial-of-service vulnerability via repeated headers when using ASGI
Fixes CVE-2026-1207: Potential SQL injection via raster lookups on PostGIS
Fixes CVE-2026-1285: Potential denial-of-service vulnerability in django.utils.text.Truncator HTML methods
Fixes CVE-2026-1287: Potential SQL injection in column aliases via control characters
Fixes CVE-2026-1312: Potential SQL injection via QuerySet.order_by and FilteredRelation

Checked

12 minutes 14 seconds ago

URL

https://bodhi.fedoraproject.org/rss/updates/?type=security