Fedora Security Advisories

openssh-9.9p1-14.fc42

Fedora Security Advisories
2 days 15 hours ago
FEDORA-2026-d08c298940 Packages in this update:
  • openssh-9.9p1-14.fc42
Update description:

Fixes high severity CVE: - CVE-2026-35385: Fix privilege escalation via scp legacy protocol when not in preserving file mode

openssh-10.2p1-8.fc44

Fedora Security Advisories
2 days 15 hours ago
FEDORA-2026-93679cc7c2 Packages in this update:
  • openssh-10.2p1-8.fc44
Update description:
  • CVE-2026-35385: Fix privilege escalation via scp legacy protocol when not in preserving file mode
  • CVE-2026-35388: Add connection multiplexing confirmation for proxy-mode multiplexing sessions
  • CVE-2026-35387: Fix incomplete application of PubkeyAcceptedAlgorithms and HostbasedAcceptedAlgorithms with regard to ECDSA keys
  • CVE-2026-35414: Fix mishandling of authorized_keys principals option
  • CVE-2026-35386: Add validation rules to usernames and hostnames set for ProxyJump/-J on the commandline

openssh-10.0p1-9.fc43

Fedora Security Advisories
2 days 15 hours ago
FEDORA-2026-2cedc95af8 Packages in this update:
  • openssh-10.0p1-9.fc43
Update description:
  • CVE-2026-35385: Fix privilege escalation via scp legacy protocol when not in preserving file mode
  • CVE-2026-35388: Add connection multiplexing confirmation for proxy-mode multiplexing sessions
  • CVE-2026-35387: Fix incomplete application of PubkeyAcceptedAlgorithms and HostbasedAcceptedAlgorithms with regard to ECDSA keys
  • CVE-2026-35414: Fix mishandling of authorized_keys principals option
  • CVE-2026-35386: Add validation rules to usernames and hostnames set for ProxyJump/-J on the commandline

botan3-3.9.0-3.el10_3

Fedora Security Advisories
4 days 12 hours ago
FEDORA-EPEL-2026-a0842eadb1 Packages in this update:
  • botan3-3.9.0-3.el10_3
Update description:

Fix security vulnerabilities CVE-2026-32877,CVE-2026-32883,CVE-2026-32884,CVE-2026-34580,CVE-2026-34582

botan3-3.9.0-6.fc44

Fedora Security Advisories
4 days 12 hours ago
FEDORA-2026-bd25e30303 Packages in this update:
  • botan3-3.9.0-6.fc44
Update description:

Fix security vulnerabilities CVE-2026-32877,CVE-2026-32883,CVE-2026-32884,CVE-2026-34580,CVE-2026-34582

python3.14-3.14.4-2.fc42

Fedora Security Advisories
4 days 18 hours ago
FEDORA-2026-1fd21102d1 Packages in this update:
  • python3.14-3.14.4-2.fc42
Update description:

Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-5713, CVE-2026-6100

New minor version of the alternate Python interpreter

python3.14-3.14.4-2.fc45

Fedora Security Advisories
5 days 3 hours ago
FEDORA-2026-382df0cfce Packages in this update:
  • python3.14-3.14.4-2.fc45
Update description:

Automatic update for python3.14-3.14.4-2.fc45.

Changelog * Thu Apr 16 2026 Charalampos Stratakis <cstratak@redhat.com> - 3.14.4-2 - Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-5713, CVE-2026-6100 Resolves: rhbz#2457944, rhbz#2458224, rhbz#2458488, rhbz#2458016

xrdp-0.10.6-1.el8

Fedora Security Advisories
5 days 5 hours ago
FEDORA-EPEL-2026-239e52fdeb Packages in this update:
  • xrdp-0.10.6-1.el8
Update description:

Security fixes

  • CVE-2026-32105
  • CVE-2026-32107
  • CVE-2026-32623
  • CVE-2026-32624
  • CVE-2026-33145
  • CVE-2026-33516
  • CVE-2026-33689
  • CVE-2026-35512

New features

  • Support for xorgxrdp bug fixes #249 and #342 (#3721)

Bug fixes

  • Honour pass_shell_as_env setting only if user sets a shell (#3725)
  • We no longer try to create a NULL authentication file when using VNC over UDS (#3727)
  • Problems with the Brazilian ABNT2 keyboard mapping have been corrected (#3728 3736)
  • A 'file exists' error when installing xrdp over an existing installation has been addressed (#3780)

xrdp-0.10.6-1.fc43

Fedora Security Advisories
5 days 5 hours ago
FEDORA-2026-9417ff0bc5 Packages in this update:
  • xrdp-0.10.6-1.fc43
Update description:

Security fixes

  • CVE-2026-32105
  • CVE-2026-32107
  • CVE-2026-32623
  • CVE-2026-32624
  • CVE-2026-33145
  • CVE-2026-33516
  • CVE-2026-33689
  • CVE-2026-35512

New features

  • Support for xorgxrdp bug fixes #249 and #342 (#3721)

Bug fixes

  • Honour pass_shell_as_env setting only if user sets a shell (#3725)
  • We no longer try to create a NULL authentication file when using VNC over UDS (#3727)
  • Problems with the Brazilian ABNT2 keyboard mapping have been corrected (#3728 3736)
  • A 'file exists' error when installing xrdp over an existing installation has been addressed (#3780)

xrdp-0.10.6-1.fc42

Fedora Security Advisories
5 days 5 hours ago
FEDORA-2026-f04c228c78 Packages in this update:
  • xrdp-0.10.6-1.fc42
Update description:

Security fixes

  • CVE-2026-32105
  • CVE-2026-32107
  • CVE-2026-32623
  • CVE-2026-32624
  • CVE-2026-33145
  • CVE-2026-33516
  • CVE-2026-33689
  • CVE-2026-35512

New features

  • Support for xorgxrdp bug fixes #249 and #342 (#3721)

Bug fixes

  • Honour pass_shell_as_env setting only if user sets a shell (#3725)
  • We no longer try to create a NULL authentication file when using VNC over UDS (#3727)
  • Problems with the Brazilian ABNT2 keyboard mapping have been corrected (#3728 3736)
  • A 'file exists' error when installing xrdp over an existing installation has been addressed (#3780)

xrdp-0.10.6-1.el9

Fedora Security Advisories
5 days 5 hours ago
FEDORA-EPEL-2026-ff046d13ab Packages in this update:
  • xrdp-0.10.6-1.el9
Update description:

Security fixes

  • CVE-2026-32105
  • CVE-2026-32107
  • CVE-2026-32623
  • CVE-2026-32624
  • CVE-2026-33145
  • CVE-2026-33516
  • CVE-2026-33689
  • CVE-2026-35512

New features

  • Support for xorgxrdp bug fixes #249 and #342 (#3721)

Bug fixes

  • Honour pass_shell_as_env setting only if user sets a shell (#3725)
  • We no longer try to create a NULL authentication file when using VNC over UDS (#3727)
  • Problems with the Brazilian ABNT2 keyboard mapping have been corrected (#3728 3736)
  • A 'file exists' error when installing xrdp over an existing installation has been addressed (#3780)
Checked
20 minutes 27 seconds ago
URL
https://bodhi.fedoraproject.org/rss/updates/?type=security