rust-sccache-0.13.0-4.fc43
FEDORA-2026-06ba6ec743
Packages in this update:
- rust-sccache-0.13.0-4.fc43
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
Fedora Security Advisories
rust-cargo-vendor-filterer-0.5.18-4.el10_1
FEDORA-EPEL-2026-28d5610c3e
Packages in this update:
- rust-cargo-vendor-filterer-0.5.18-4.el10_1
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-ingredients-0.2.2-3.fc42
FEDORA-2026-1c54435571
Packages in this update:
- rust-ingredients-0.2.2-3.fc42
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
insight-18.0.50.20260306-2.fc43
FEDORA-2026-0b2e9c67ef
Packages in this update:
- insight-18.0.50.20260306-2.fc43
Fix CVE-2026-4647.
insight-18.0.50.20260306-2.fc42
FEDORA-2026-62cea4650e
Packages in this update:
- insight-18.0.50.20260306-2.fc42
Fix CVE-2026-4647.
insight-18.0.50.20260306-2.fc44
FEDORA-2026-d79ba951dd
Packages in this update:
- insight-18.0.50.20260306-2.fc44
Fix CVE-2026-4647.
rust-cargo-c-0.10.19-2.el10_2
FEDORA-EPEL-2026-2df1a76a8a
Packages in this update:
- rust-cargo-c-0.10.19-2.el10_2
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-cargo-c-0.10.19-2.el10_3
FEDORA-EPEL-2026-47a418e671
Packages in this update:
- rust-cargo-c-0.10.19-2.el10_3
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-ingredients-0.2.2-3.fc43
FEDORA-2026-d0a08cfd21
Packages in this update:
- rust-ingredients-0.2.2-3.fc43
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-cargo-vendor-filterer-0.5.18-4.el10_2
FEDORA-EPEL-2026-03e15bbc02
Packages in this update:
- rust-cargo-vendor-filterer-0.5.18-4.el10_2
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-resctl-bench-2.2.5-12.el9
FEDORA-EPEL-2026-d8dda8ca06
Packages in this update:
- rust-resctl-bench-2.2.5-12.el9
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-resctl-bench-2.2.5-12.fc42
FEDORA-2026-dd42661781
Packages in this update:
- rust-resctl-bench-2.2.5-12.fc42
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-resctl-bench-2.2.5-12.fc44
FEDORA-2026-12baf239f8
Packages in this update:
- rust-resctl-bench-2.2.5-12.fc44
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
rust-resctl-bench-2.2.5-12.fc43
FEDORA-2026-d7252cbfc9
Packages in this update:
- rust-resctl-bench-2.2.5-12.fc43
Rebuilt with rust-tar 0.4.45 for CVE-2026-33056
chromium-146.0.7680.153-1.fc43
FEDORA-2026-ae897eb928
Packages in this update:
- chromium-146.0.7680.153-1.fc43
Update to 146.0.7680.153
* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLEchromium-146.0.7680.153-1.fc44
FEDORA-2026-920df14fb5
Packages in this update:
- chromium-146.0.7680.153-1.fc44
Update to 146.0.7680.153
* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLEchromium-146.0.7680.153-1.fc42
FEDORA-2026-3bed78d162
Packages in this update:
- chromium-146.0.7680.153-1.fc42
Update to 146.0.7680.153
* CVE-2026-4439: Out of bounds memory access in WebGL * CVE-2026-4440: Out of bounds read and write in WebGL * CVE-2026-4441: Use after free in Base * CVE-2026-4442: Heap buffer overflow in CSS * CVE-2026-4443: Heap buffer overflow in WebAudio * CVE-2026-4444: Stack buffer overflow in WebRTC * CVE-2026-4445: Use after free in WebRTC * CVE-2026-4446: Use after free in WebRTC * CVE-2026-4447: Inappropriate implementation in V8 * CVE-2026-4448: Heap buffer overflow in ANGLE * CVE-2026-4449: Use after free in Blink * CVE-2026-4450: Out of bounds write in V8 * CVE-2026-4451: Insufficient validation of untrusted input in Navigation * CVE-2026-4452: Integer overflow in ANGLE * CVE-2026-4453: Integer overflow in Dawn * CVE-2026-4454: Use after free in Network * CVE-2026-4455: Heap buffer overflow in PDFium * CVE-2026-4456: Use after free in Digital Credentials API * CVE-2026-4457: Type Confusion in V8 * CVE-2026-4458: Use after free in Extensions * CVE-2026-4459: Out of bounds read and write in WebAudio * CVE-2026-4460: Out of bounds read in Skia * CVE-2026-4461: Inappropriate implementation in V8 * CVE-2026-4462: Out of bounds read in Blink * CVE-2026-4463: Heap buffer overflow in WebRTC * CVE-2026-4464: Integer overflow in ANGLEpython-scitokens-1.9.7-1.el10_1
FEDORA-EPEL-2026-6359c6d24a
Packages in this update:
- python-scitokens-1.9.7-1.el10_1
- 1.9.7-1
- Remove legacy parent SciToken chaining behavior from token initialization and claim handling
- Harden Enforcer scope path traversal validation (including encoded traversal checks)
-
Clean up documentation references to parent/chained SciTokens
-
1.9.6-1
- Fix SQL injection risk in KeyCache by using parameterized SQLite queries
- Prevent sibling-path authorization bypass in Enforcer scope checks
python-scitokens-1.9.7-1.el10_2
FEDORA-EPEL-2026-d766064a6e
Packages in this update:
- python-scitokens-1.9.7-1.el10_2
- 1.9.7-1
- Remove legacy parent SciToken chaining behavior from token initialization and claim handling
- Harden Enforcer scope path traversal validation (including encoded traversal checks)
-
Clean up documentation references to parent/chained SciTokens
-
1.9.6-1
- Fix SQL injection risk in KeyCache by using parameterized SQLite queries
- Prevent sibling-path authorization bypass in Enforcer scope checks
cpp-httplib-0.37.2-1.el9
FEDORA-EPEL-2026-6d3c627cc2
Packages in this update:
- cpp-httplib-0.37.2-1.el9
- Fixes silent TLS certificate verification bypass on HTTPS Redirect via proxy (CVE-2026-32627, rhbz#2448105)
Source: https://github.com/yhirose/cpp-httplib/releases/tag/v0.37.2