Fedora Security Advisories

kea-2.6.3-1.el9

Fedora Security Advisories
5 days 18 hours ago
FEDORA-EPEL-2025-a36cdc1182 Packages in this update:
  • kea-2.6.3-1.el9
Update description:
  • New version 2.6.3 (rhbz#2368989)
  • Fix for: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803
  • kea.conf: Remove /tmp/ from socket-name for existing configurations
  • kea.conf: Set pseudo-random password for default config to secure fresh install and allow CA startup without user intervention
  • kea.conf: Restrict directory permissions
  • Sync service files with upstream
  • Fix leases ownership when switching from root to kea user (rhbz#2324168)

Release Notes:

The new default configuration file, kea-ctrl-agent.conf, introduces an authentication setting, "password-file", which restricts access to the REST API. On Fedora, the kea-api-password file is automatically populated with a pseudo-random password to secure new installations.

For system upgrades, it is strongly recommended to update any custom configurations to restrict access to the REST API.

For more details, including information on CVE fixes and incompatible changes, refer to the upstream release notes:

https://downloads.isc.org/isc/kea/2.6.3/Kea-2.6.3-ReleaseNotes.txt

kea-2.6.3-1.fc41

Fedora Security Advisories
5 days 20 hours ago
FEDORA-2025-b870671130 Packages in this update:
  • kea-2.6.3-1.fc41
Update description:
  • New version 2.6.3 (rhbz#2368989)
  • Fix for: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803
  • kea.conf: Remove /tmp/ from socket-name for existing configurations
  • kea.conf: Set pseudo-random password for default config to secure fresh install and allow CA startup without user intervention
  • kea.conf: Restrict directory permissions
  • Sync service files with upstream
  • Fix leases ownership when switching from root to kea user (rhbz#2324168)

Release Notes:

The new default configuration file, kea-ctrl-agent.conf, introduces an authentication setting, "password-file", which restricts access to the REST API. On Fedora, the kea-api-password file is automatically populated with a pseudo-random password to secure new installations.

For system upgrades, it is strongly recommended to update any custom configurations to restrict access to the REST API.

For more details, including information on CVE fixes and incompatible changes, refer to the upstream release notes:

https://downloads.isc.org/isc/kea/2.6.3/Kea-2.6.3-ReleaseNotes.txt

kea-2.6.3-1.fc42

Fedora Security Advisories
5 days 20 hours ago
FEDORA-2025-dc6ec0a8e2 Packages in this update:
  • kea-2.6.3-1.fc42
Update description:
  • New version 2.6.3 (rhbz#2368989)
  • Fix for: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803
  • kea.conf: Remove /tmp/ from socket-name for existing configurations
  • kea.conf: Set pseudo-random password for default config to secure fresh install and allow CA startup without user intervention
  • kea.conf: Restrict directory permissions
  • Sync service files with upstream
  • Fix leases ownership when switching from root to kea user (rhbz#2324168)

Release Notes:

The new default configuration file, kea-ctrl-agent.conf, introduces an authentication setting, "password-file", which restricts access to the REST API. On Fedora, the kea-api-password file is automatically populated with a pseudo-random password to secure new installations.

For system upgrades, it is strongly recommended to update any custom configurations to restrict access to the REST API.

For more details, including information on CVE fixes and incompatible changes, refer to the upstream release notes:

https://downloads.isc.org/isc/kea/2.6.3/Kea-2.6.3-ReleaseNotes.txt

LabPlot-2.12.0-3.fc42 dtk6core-6.0.27-5.fc42 dtk6gui-6.0.27-6.fc42 dtk6log-0.0.2-7.fc42 dtk6widget-6.0.27-5.fc42 fcitx5-qt-5.1.9-7.fc42 gammaray-3.1.0-11.fc42 kddockwidgets-1.7.0-23.fc42 kwin-6.3.5-3.fc42 libqtxdg-4.1.0-6.fc42 nheko-0.12.0-15.fc42 plasma…

Fedora Security Advisories
5 days 21 hours ago
FEDORA-2025-c546fd3f09 Packages in this update:
  • dtk6core-6.0.27-5.fc42
  • dtk6gui-6.0.27-6.fc42
  • dtk6log-0.0.2-7.fc42
  • dtk6widget-6.0.27-5.fc42
  • fcitx5-qt-5.1.9-7.fc42
  • gammaray-3.1.0-11.fc42
  • kddockwidgets-1.7.0-23.fc42
  • kwin-6.3.5-3.fc42
  • LabPlot-2.12.0-3.fc42
  • libqtxdg-4.1.0-6.fc42
  • nheko-0.12.0-15.fc42
  • plasma-integration-6.3.5-3.fc42
  • python-pyqt6-6.9.0-3.fc42
  • python-pyside6-6.9.1-1.fc42
  • qt6-6.9.1-1.fc42
  • qt6-doc-6.9.1-1.fc42
  • qt6-qt3d-6.9.1-1.fc42
  • qt6-qt5compat-6.9.1-1.fc42
  • qt6-qtbase-6.9.1-1.fc42
  • qt6-qtcharts-6.9.1-1.fc42
  • qt6-qtcoap-6.9.1-1.fc42
  • qt6-qtconnectivity-6.9.1-1.fc42
  • qt6-qtdatavis3d-6.9.1-1.fc42
  • qt6-qtdeclarative-6.9.1-1.fc42
  • qt6-qtgraphs-6.9.1-1.fc42
  • qt6-qtgrpc-6.9.1-1.fc42
  • qt6-qthttpserver-6.9.1-1.fc42
  • qt6-qtimageformats-6.9.1-1.fc42
  • qt6-qtlanguageserver-6.9.1-1.fc42
  • qt6-qtlocation-6.9.1-1.fc42
  • qt6-qtlottie-6.9.1-1.fc42
  • qt6-qtmqtt-6.9.1-1.fc42
  • qt6-qtmultimedia-6.9.1-1.fc42
  • qt6-qtnetworkauth-6.9.1-1.fc42
  • qt6-qtopcua-6.9.1-1.fc42
  • qt6-qtpositioning-6.9.1-1.fc42
  • qt6-qtquick3d-6.9.1-1.fc42
  • qt6-qtquick3dphysics-6.9.1-1.fc42
  • qt6-qtquicktimeline-6.9.1-1.fc42
  • qt6-qtremoteobjects-6.9.1-1.fc42
  • qt6-qtscxml-6.9.1-1.fc42
  • qt6-qtsensors-6.9.1-1.fc42
  • qt6-qtserialbus-6.9.1-1.fc42
  • qt6-qtserialport-6.9.1-1.fc42
  • qt6-qtshadertools-6.9.1-1.fc42
  • qt6-qtspeech-6.9.1-1.fc42
  • qt6-qtsvg-6.9.1-1.fc42
  • qt6-qttools-6.9.1-1.fc42
  • qt6-qttranslations-6.9.1-1.fc42
  • qt6-qtvirtualkeyboard-6.9.1-1.fc42
  • qt6-qtwayland-6.9.1-1.fc42
  • qt6-qtwebchannel-6.9.1-1.fc42
  • qt6-qtwebengine-6.9.1-1.fc42
  • qt6-qtwebsockets-6.9.1-1.fc42
  • qt6-qtwebview-6.9.1-1.fc42
  • qt-creator-16.0.1-2.fc42
  • zeal-0.7.2-9.fc42
Update description:

Qt 6.9.1 bugfix release.

python-django5-5.1.10-1.fc41

Fedora Security Advisories
5 days 22 hours ago
FEDORA-2025-2dff80a8a3 Packages in this update:
  • python-django5-5.1.10-1.fc41
Update description:
  • Fixes CVE-2025-32873: Denial-of-service possibility in strip_tags()
  • Fixes CVE-2025-48432: Potential log injection via unescaped request path

python-django5-5.2.2-1.fc42

Fedora Security Advisories
5 days 22 hours ago
FEDORA-2025-ad58eb378b Packages in this update:
  • python-django5-5.2.2-1.fc42
Update description:
  • Fixes CVE-2025-32873: Denial-of-service possibility in strip_tags()
  • Fixes CVE-2025-48432: Potential log injection via unescaped request path

python-django4.2-4.2.22-1.el9

Fedora Security Advisories
6 days 17 hours ago
FEDORA-EPEL-2025-ead5908650 Packages in this update:
  • python-django4.2-4.2.22-1.el9
Update description:
  • Fixes CVE-2025-32873: Denial-of-service possibility in strip_tags()
  • Fixes CVE-2025-48432: Potential log injection via unescaped request path

python-django4.2-4.2.22-1.fc42

Fedora Security Advisories
6 days 17 hours ago
FEDORA-2025-6de2ab1d25 Packages in this update:
  • python-django4.2-4.2.22-1.fc42
Update description:
  • Fixes CVE-2025-32873: Denial-of-service possibility in strip_tags()
  • Fixes CVE-2025-48432: Potential log injection via unescaped request path

python-django4.2-4.2.22-1.fc41

Fedora Security Advisories
6 days 17 hours ago
FEDORA-2025-d4849e6cf3 Packages in this update:
  • python-django4.2-4.2.22-1.fc41
Update description:
  • Fixes CVE-2025-32873: Denial-of-service possibility in strip_tags()
  • Fixes CVE-2025-48432: Potential log injection via unescaped request path
Checked
12 minutes 2 seconds ago
URL
https://bodhi.fedoraproject.org/rss/updates/?type=security