Fedora Security Advisories

chromium-123.0.6312.86-1.fc40

1 day ago
FEDORA-2024-85531c965e Packages in this update:
  • chromium-123.0.6312.86-1.fc40
Update description:

update to 123.0.6312.86

  • Critical CVE-2024-2883: Use after free in ANGLE
  • High CVE-2024-2885: Use after free in Dawn
  • High CVE-2024-2886: Use after free in WebCodecs
  • High CVE-2024-2887: Type Confusion in WebAssembly

chromium bugfix update

kernel-6.7.11-200.fc39

1 day 6 hours ago
FEDORA-2024-2fcce4ffb7 Packages in this update:
  • kernel-6.7.11-200.fc39
Update description:

The 6.7.11 stable kernel update contains a number of important fixes across the tree.

kernel-6.7.11-100.fc38

1 day 6 hours ago
FEDORA-2024-e95585dfb9 Packages in this update:
  • kernel-6.7.11-100.fc38
Update description:

The 6.7.11 stable kernel update contains a number of important fixes across the tree.

chromium-123.0.6312.86-1.fc39

1 day 10 hours ago
FEDORA-2024-0bb0e8f2a0 Packages in this update:
  • chromium-123.0.6312.86-1.fc39
Update description:

update to 123.0.6312.86

  • Critical CVE-2024-2883: Use after free in ANGLE
  • High CVE-2024-2885: Use after free in Dawn
  • High CVE-2024-2886: Use after free in WebCodecs
  • High CVE-2024-2887: Type Confusion in WebAssembly

chromium-123.0.6312.86-1.fc38

1 day 10 hours ago
FEDORA-2024-b4dab205d7 Packages in this update:
  • chromium-123.0.6312.86-1.fc38
Update description:

update to 123.0.6312.86

  • Critical CVE-2024-2883: Use after free in ANGLE
  • High CVE-2024-2885: Use after free in Dawn
  • High CVE-2024-2886: Use after free in WebCodecs
  • High CVE-2024-2887: Type Confusion in WebAssembly

tinyxml-2.6.2-28.el9

1 day 19 hours ago
FEDORA-EPEL-2024-e2cad98fb0 Packages in this update:
  • tinyxml-2.6.2-28.el9
Update description:

Security fixes for CVE-2021-42260, CVE-2023-34194 and its duplicate CVE-2023-40462. Fix incorrect text element encoding (upstream isssue #51). Enable tests.

tinyxml-2.6.2-28.el8

1 day 19 hours ago
FEDORA-EPEL-2024-0ced8d6066 Packages in this update:
  • tinyxml-2.6.2-28.el8
Update description:

Security fixes for CVE-2021-42260, CVE-2023-34194 and its duplicate CVE-2023-40462. Fix incorrect text element encoding (upstream isssue #51). Enable tests.

unbound-1.19.1-4.fc40

1 day 19 hours ago
FEDORA-2024-c266dab9e9 Packages in this update:
  • unbound-1.19.1-4.fc40
Update description:

CVE-2024-1931 - Fix trim of EDE text from large udp responses from spinning cpu.

chromium-123.0.6312.58-1.el7

1 day 19 hours ago
FEDORA-EPEL-2024-15cde9f00b Packages in this update:
  • chromium-123.0.6312.58-1.el7
Update description:

Update to 123.0.6312.58

* High CVE-2024-2625: Object lifecycle issue in V8 * Medium CVE-2024-2626: Out of bounds read in Swiftshader * Medium CVE-2024-2627: Use after free in Canvas * Medium CVE-2024-2628: Inappropriate implementation in Downloads * Medium CVE-2024-2629: Incorrect security UI in iOS * Medium CVE-2024-2630: Inappropriate implementation in iOS * Low CVE-2024-2631: Inappropriate implementation in iOS

chromium-123.0.6312.58-1.el9

1 day 19 hours ago
FEDORA-EPEL-2024-24aceec24b Packages in this update:
  • chromium-123.0.6312.58-1.el9
Update description:

Update to 123.0.6312.58

* High CVE-2024-2625: Object lifecycle issue in V8 * Medium CVE-2024-2626: Out of bounds read in Swiftshader * Medium CVE-2024-2627: Use after free in Canvas * Medium CVE-2024-2628: Inappropriate implementation in Downloads * Medium CVE-2024-2629: Incorrect security UI in iOS * Medium CVE-2024-2630: Inappropriate implementation in iOS * Low CVE-2024-2631: Inappropriate implementation in iOS

chromium-123.0.6312.58-1.el8

1 day 19 hours ago
FEDORA-EPEL-2024-fc233c6d2e Packages in this update:
  • chromium-123.0.6312.58-1.el8
Update description:

Update to 123.0.6312.58

* High CVE-2024-2625: Object lifecycle issue in V8 * Medium CVE-2024-2626: Out of bounds read in Swiftshader * Medium CVE-2024-2627: Use after free in Canvas * Medium CVE-2024-2628: Inappropriate implementation in Downloads * Medium CVE-2024-2629: Incorrect security UI in iOS * Medium CVE-2024-2630: Inappropriate implementation in iOS * Low CVE-2024-2631: Inappropriate implementation in iOS

micropython-1.22.2-1.fc41

2 days 12 hours ago
FEDORA-2024-9f2a705459 Packages in this update:
  • micropython-1.22.2-1.fc41
Update description:

Automatic update for micropython-1.22.2-1.fc41.

Changelog * Fri Mar 22 2024 Charalampos Stratakis <cstratak@redhat.com> - 1.22.2-1 - Update to 1.22.2 - Security fixes for CVE-2023-7158 and CVE-2023-7152 - Fixes: rhbz#2256176, rhbz#2256178, rhbz#2259215 * Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

podman-4.9.4-1.fc39

2 days 22 hours ago
FEDORA-2024-dd32f390b3 Packages in this update:
  • podman-4.9.4-1.fc39
Update description:

Security fix for CVE-2024-1753

Automatic update for podman-4.9.4-1.fc39.

Changelog for podman * Mon Mar 25 2024 Packit <hello@packit.dev> - 5:4.9.4-1 - [packit] 4.9.4 upstream release * Fri Mar 01 2024 Debarshi Ray <rishi@fedoraproject.org> - 5:4.9.3-5 - Show the toolbox RPMs used to run the tests * Fri Mar 01 2024 Debarshi Ray <rishi@fedoraproject.org> - 5:4.9.3-4 - Avoid running out of storage space when running the Toolbx tests * Fri Mar 01 2024 Debarshi Ray <rishi@fedoraproject.org> - 5:4.9.3-3 - Silence warnings about deprecated grep(1) use in test logs * Fri Mar 01 2024 Debarshi Ray <rishi@fedoraproject.org> - 5:4.9.3-2 - Update how Toolbx is spelt

podman-4.9.4-1.fc38

2 days 22 hours ago
FEDORA-2024-8409b5fa8e Packages in this update:
  • podman-4.9.4-1.fc38
Update description:

Security fix for CVE-2024-1753

Automatic update for podman-4.9.4-1.fc38.

Changelog for podman * Mon Mar 25 2024 Packit <hello@packit.dev> - 5:4.9.4-1 - [packit] 4.9.4 upstream release
Checked
15 minutes 22 seconds ago