Fedora Security Advisories

• cups-2.4.14-1.fc43

2.4.14 (fixes CVE-2025-58060 and CVE-2025-58364)

• gh-2.79.0-1.fc42

Update to 2.79.0

• gh-2.79.0-1.fc41

Update to 2.79.0

• perl-Cpanel-JSON-XS-4.40-1.el10_0

This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.el8

This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.el9

This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.el10_1

This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.el10_2

This update is the latest upstream release of the Cpanel::JSON::XS module, bringing many bug fixes and enhancements since the original EPEL package release. Amongst the bug fixes is one to fix an integer overflow issue that could be triggered by a specially-crafted JSON input, which could lead to a crash in the program parsing the JSON (CVE-2025-40929).

• forgejo-12.0.3-1.fc42

This is an upstream security and bugfix release. Please refer to the upstream release notes for versions 12.0.2 and 12.0.3 for details about changes.

• forgejo-12.0.3-1.fc43

This is an upstream security and bugfix release. Please refer to the upstream release notes for versions 12.0.2 and 12.0.3 for details about changes.

• forgejo-12.0.3-1.el10_2

This is an upstream security and bugfix release. Please refer to the upstream release notes for versions 12.0.2 and 12.0.3 for details about changes.

• perl-Cpanel-JSON-XS-4.40-1.fc42

This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.fc43

This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON (CVE-2025-40929).

• perl-Cpanel-JSON-XS-4.40-1.fc41

This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON (CVE-2025-40929).

• libssh-0.11.3-1.fc41

New upstream release fixing the following security weaknesses (CVE-2025-8114, CVE-2025-8277)

• libssh-0.11.3-1.fc42

New upstream release fixing the following security weaknesses (CVE-2025-8114, CVE-2025-8277)

• gitleaks-8.28.0-1.fc43

Update to 8.28.0

• gitleaks-8.28.0-1.fc42

Update to 8.28.0

• gitleaks-8.28.0-1.fc41

Update to 8.28.0

• libssh-0.11.3-1.fc43

New upstream release fixing the following security weaknesses (CVE-2025-8114, CVE-2025-8277)