Fedora Security Advisories

FEDORA-2026-0d1cf2e45b Packages in this update:

• NetworkManager-l2tp-1.52.0-1.fc42

Update description:

Updated to 1.52.0 release (CVE-2025-9615) Verify file permissions for private connections to prevent unprivileged user from using other user's certs.

Ensure NetworkManager dependency has CVE-2025-9615 update.

FEDORA-2026-2cebf295af Packages in this update:

• linux-firmware-20260110-1.fc43

Update description:

Update to 20260110:

• update firmware for MT7925 WiFi device
• mediatek MT7925: update bluetooth firmware to 20260106153314
• mediatek MT7920: update bluetooth firmware to 20260105151350
• mediatek MT7922: update bluetooth firmware to 20260106153735
• update firmware for MT7922 WiFi device
• Mellanox: Add new mlxsw_spectrum firmware xx.2016.3900
• amdgpu: Update dcn314, dcn315 firmware to 0.1.42.0
• qcom: Update DSP firmware for sa8775 platform
• QCA: Add Bluetooth firmware for QCC2072 uart interface
• i915: Xe3p_LPD DMC v2.33
• qcom: Update DSP firmware for qcs8300 platform
• update firmware for MT7920 WiFi device
• qcom: Update aic100 firmware files
• qca: Update Bluetooth WCN6750 1.1.3-00100 firmware to 1.1.3-00105
• firmware: Revert kernel_boot.elf due to license compliance issue
• add firmware for an8811hb 2.5G ethernet phy
• i915: Xe3LPD_3002 DMC v2.28
• i915: Xe3LPD DMC v2.33
• intel_vpu: Add firmware for 50xx NPUs and update older ones
• Update AMD SEV firmware
• amdgpu: DMCUB updates for various ASICs
• qcom: venus-5.4: fix ELF segment alignment to 4 bytes
• mediatek MT7925: update bluetooth firmware to 20251210093205
• update firmware for MT7925 WiFi device
• rcar_gen4_pcie: add firmware for Renesas R-Car Gen4 PCIe controller
• qcom: Update CDSP firmware for qcm6490 platform
• rtl_bt: Update RTL8852BT/RTL8852BE-VT BT USB FW to 0x488C_DB55
• iwlwifi: Add firmware file for Intel Scorpius core
• rtw89: 8852b: update fw to v0.29.29.15
• cirrus: cs35l41: Update firmware and tuning for various HP laptops
• cirrus: cs35l41: Add support for new HP Clipper laptop
• qcom: drop compatibility a640_zap.mdt symlink
• qcom: add version for a530v3_gpmu.fw2
• xe: Update GUC to v70.55.3 for BMG, PTL
• iwlwifi: add Bz/Sc FW for core101-82 release
• iwlwifi: Add Sc/Gf firmware for core101-82 release
• iwlwifi: update ty/So/Ma firmwares for core101-82 release
• iwlwifi: update cc/Qu/QuZ firmwares for core101-82 release
• amdgpu: DMCUB updates for various ASICs
• qcom: Add firmwares for sm8150/sm8450/sm8550/sm8650/sm8750 GPUs
• ath10k: WCN3990 hw1.0: update board-2.bin
• ath10k: QCA9888 hw2.0: update board-2.bin
• ath10k: QCA4019 hw1.0: update board-2.bin
• cirrus: cs35l41: Add support for new HP laptops
• Revert "amdgpu: update GC 11.5.0 firmware"
• Update amd-ucode copyright information
• Update AMD cpu microcode
• Update firmware file for Intel Scorpius core
• Update firmware file for Intel BlazarIGfP core
• Update firmware file for Intel BlazarI core
• Update firmware file for Intel BlazarU-HrPGfP core
• Update firmware file for Intel BlazarU core
• ath11k: QCA6698AQ hw2.1: update to WLAN.HSP.1.1-04866-QCAHSPSWPL_V1_V2_SILICONZ_IOE-1
• ath11k: QCA2066 hw2.1: update board-2.bin
• qcom: update ADSP firmware for x1e80100 platform, change the license
• qcom: reorder ADSP, CDSP firmware entries for qcs8300 in WHENCE
• Reapply "amdgpu: update SMU 14.0.3 firmware"
• Revert "amdgpu: update SMU 14.0.3 firmware"
• Revert "amdgpu: update GC 10.3.6 firmware"
• Revert "amdgpu: update GC 11.5.1 firmware"
• update firmware for MT7925 WiFi device
• mediatek MT7925: update bluetooth firmware to 20251124093155
• intel_vpu: Update NPU firmware
• qcom: vpu: update video firmware binary for SM8250
• xe: Update GUC to v70.54.0 for BMG, PTL

FEDORA-2026-1d240112ff Packages in this update:

• linux-firmware-20260110-1.fc42

Update description:

Update to 20260110:

• update firmware for MT7925 WiFi device
• mediatek MT7925: update bluetooth firmware to 20260106153314
• mediatek MT7920: update bluetooth firmware to 20260105151350
• mediatek MT7922: update bluetooth firmware to 20260106153735
• update firmware for MT7922 WiFi device
• Mellanox: Add new mlxsw_spectrum firmware xx.2016.3900
• amdgpu: Update dcn314, dcn315 firmware to 0.1.42.0
• qcom: Update DSP firmware for sa8775 platform
• QCA: Add Bluetooth firmware for QCC2072 uart interface
• i915: Xe3p_LPD DMC v2.33
• qcom: Update DSP firmware for qcs8300 platform
• update firmware for MT7920 WiFi device
• qcom: Update aic100 firmware files
• qca: Update Bluetooth WCN6750 1.1.3-00100 firmware to 1.1.3-00105
• firmware: Revert kernel_boot.elf due to license compliance issue
• add firmware for an8811hb 2.5G ethernet phy
• i915: Xe3LPD_3002 DMC v2.28
• i915: Xe3LPD DMC v2.33
• intel_vpu: Add firmware for 50xx NPUs and update older ones
• Update AMD SEV firmware
• amdgpu: DMCUB updates for various ASICs
• qcom: venus-5.4: fix ELF segment alignment to 4 bytes
• mediatek MT7925: update bluetooth firmware to 20251210093205
• update firmware for MT7925 WiFi device
• rcar_gen4_pcie: add firmware for Renesas R-Car Gen4 PCIe controller
• qcom: Update CDSP firmware for qcm6490 platform
• rtl_bt: Update RTL8852BT/RTL8852BE-VT BT USB FW to 0x488C_DB55
• iwlwifi: Add firmware file for Intel Scorpius core
• rtw89: 8852b: update fw to v0.29.29.15
• cirrus: cs35l41: Update firmware and tuning for various HP laptops
• cirrus: cs35l41: Add support for new HP Clipper laptop
• qcom: drop compatibility a640_zap.mdt symlink
• qcom: add version for a530v3_gpmu.fw2
• xe: Update GUC to v70.55.3 for BMG, PTL
• iwlwifi: add Bz/Sc FW for core101-82 release
• iwlwifi: Add Sc/Gf firmware for core101-82 release
• iwlwifi: update ty/So/Ma firmwares for core101-82 release
• iwlwifi: update cc/Qu/QuZ firmwares for core101-82 release
• amdgpu: DMCUB updates for various ASICs
• qcom: Add firmwares for sm8150/sm8450/sm8550/sm8650/sm8750 GPUs
• ath10k: WCN3990 hw1.0: update board-2.bin
• ath10k: QCA9888 hw2.0: update board-2.bin
• ath10k: QCA4019 hw1.0: update board-2.bin
• cirrus: cs35l41: Add support for new HP laptops
• Revert "amdgpu: update GC 11.5.0 firmware"
• Update amd-ucode copyright information
• Update AMD cpu microcode
• Update firmware file for Intel Scorpius core
• Update firmware file for Intel BlazarIGfP core
• Update firmware file for Intel BlazarI core
• Update firmware file for Intel BlazarU-HrPGfP core
• Update firmware file for Intel BlazarU core
• ath11k: QCA6698AQ hw2.1: update to WLAN.HSP.1.1-04866-QCAHSPSWPL_V1_V2_SILICONZ_IOE-1
• ath11k: QCA2066 hw2.1: update board-2.bin
• qcom: update ADSP firmware for x1e80100 platform, change the license
• qcom: reorder ADSP, CDSP firmware entries for qcs8300 in WHENCE
• Reapply "amdgpu: update SMU 14.0.3 firmware"
• Revert "amdgpu: update SMU 14.0.3 firmware"
• Revert "amdgpu: update GC 10.3.6 firmware"
• Revert "amdgpu: update GC 11.5.1 firmware"
• update firmware for MT7925 WiFi device
• mediatek MT7925: update bluetooth firmware to 20251124093155
• intel_vpu: Update NPU firmware
• qcom: vpu: update video firmware binary for SM8250
• xe: Update GUC to v70.54.0 for BMG, PTL

FEDORA-2026-4ba84b1f69 Packages in this update:

• NetworkManager-l2tp-1.52.0-1.fc43

Update description:

Updated to 1.52.0 release (CVE-2025-9615)

Verify file permissions for private connections to prevent unprivileged user from using other user's certs (CVE-2025-9615)

Ensure NetworkManager dependency has CVE-2025-9615 update.

FEDORA-2026-f9c97702ca Packages in this update:

• mysql8.0-8.0.44-4.fc42

Update description:

MySQL 8.0.44

Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-44.html

FEDORA-2026-942d35ff10 Packages in this update:

• mysql8.4-8.4.7-5.fc42

Update description:

MySQL 8.4.7

Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.4/en/news-8-4-7.html

FEDORA-2026-cd7f4e1676 Packages in this update:

• python-biopython-1.86-2.fc42

Update description:

• Initial fix for security bug CVE-2025-68463

FEDORA-2026-186829baee Packages in this update:

• python-biopython-1.86-2.fc43

Update description:

• Initial fix for security bug CVE-2025-68463

FEDORA-2026-23b7799e1f Packages in this update:

• musescore-4.3.2-20.fc42

Update description:

This update adds a patch to fix CVE-2025-56225, a flaw in the bundled version of fluidsynth.

FEDORA-2026-afe4be8cb3 Packages in this update:

• musescore-4.6.5-32.fc43

Update description:

This update adds a patch to fix CVE-2025-56225, a flaw in the bundled version of fluidsynth.

FEDORA-2026-94d266def6 Packages in this update:

• cef-143.0.13^chromium143.0.7499.192-1.fc44

Update description:

Automatic update for cef-143.0.13^chromium143.0.7499.192-1.fc44.

Changelog * Fri Jan 9 2026 Than Ngo <than@redhat.com> - 143.0.13^chromium143.0.7499.192-1 - Update to 143.0.7499.192 [rhbz#2427842] - * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1

FEDORA-EPEL-2026-50fab59f98 Packages in this update:

• helm3-3.19.3-1.el10_2
• helm-4.0.4-1.el10_2

Update description:

Update helm to version 4 and introduce helm3 as compat package.

FEDORA-EPEL-2026-4e0cd92103 Packages in this update:

• helm3-3.19.3-1.el10_1
• helm-4.0.4-1.el10_1

Update description:

Update helm to version 4 and introduce helm3 as compat package.

FEDORA-EPEL-2026-8461f97b9d Packages in this update:

• helm3-3.19.3-1.el9
• helm-4.0.4-1.el9

Update description:

Update to helm to version 4 and introduce helm3 as a compat package.

FEDORA-2026-5551bc920f Packages in this update:

• chromium-143.0.7499.192-1.fc44

Update description:

Automatic update for chromium-143.0.7499.192-1.fc44.

Changelog * Wed Jan 7 2026 Than Ngo <than@redhat.com> - 143.0.7499.192-1 - Update tp 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1

FEDORA-2026-a4a01fb680 Packages in this update:

• forgejo-13.0.4-1.fc43

Update description:

This is an upstream bug and security fix release. Please view the upstream release notes for more details.

FEDORA-2026-9d457091e8 Packages in this update:

• openssh-9.9p1-12.fc42

Update description:

Added fixes for CVE-2025-61985 and CVE-2025-61984

FEDORA-EPEL-2026-2f73131e02 Packages in this update:

• chromium-143.0.7499.192-1.el10_1

Update description:

Update to 143.0.7499.192

* High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1

FEDORA-2026-540f5a89d1 Packages in this update:

• chromium-143.0.7499.192-1.fc42

Update description:

Update to 143.0.7499.192

* High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1

FEDORA-EPEL-2026-7101d35773 Packages in this update:

• chromium-143.0.7499.192-1.el10_2

Update description:

Update to 143.0.7499.192

* High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1