Fedora Security Advisories

• keylime-7.14.2-1.fc44

Updating for Keylime release v7.14.2:

• This includes the fix for CVE-2026-6420.
• Update keylime-selinux policy to the latest version 44.1.0

• perl-CryptX-0.089-1.el10_3

Fixes CVE-2026-41565

• perl-CryptX-0.089-1.el10_2

Fixes CVE-2026-41565

• perl-CryptX-0.089-1.el8

Fixes CVE-2026-41565

• perl-CryptX-0.089-1.el9

Fixes CVE-2026-41565

• perl-CryptX-0.089-1.fc44

Fixes CVE-2026-41565

• perl-CryptX-0.089-1.fc43

Fixes CVE-2026-41565

• freeipa-4.13.1-7.fc43
• samba-4.23.8-1.fc43

Update to Samba 4.23.8 - Security fix for CVE-2026-4480, CVE-2026-2340, CVE-2026-3012, CVE-2026-1933, CVE-2026-4408, and CVE-2026-3238

• freeipa-4.13.1-12.fc44
• samba-4.24.3-1.fc44

Update to Samba 4.24.3 - Security fix for CVE-2026-4480, CVE-2026-2340, CVE-2026-3012, CVE-2026-1933, CVE-2026-4408, and CVE-2026-3238

• freeipa-4.13.1-16.fc45
• samba-4.24.3-1.fc45

Update to Samba 4.24.3 - Security fix for CVE-2026-4480, CVE-2026-2340, CVE-2026-3012, CVE-2026-1933, CVE-2026-4408, and CVE-2026-3238

• pdns-5.0.5-1.el9

• Update to 5.0.5
• Fix for CVE-2026-42000, CVE-2026-42001, CVE-2026-42002, CVE-2026-41999, CVE-2026-42396

Security Advisory: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html

• libre-4.8.1-1.el10_3

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• libre-4.8.1-1.fc43

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• libre-4.8.1-1.el9

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• libre-4.8.1-1.el8

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• libre-4.8.1-1.el10_2

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• libre-4.8.1-1.fc44

• fmt/pl: add pl_strip_html()
• sys/fs: add getpwuid fallback for fs_gethome
• tls: remove unused include rsa.h
• ice: check source address of incoming application packets
• websock: Fix integer overflow in websock_decode() masked frame check
  • https://github.com/baresip/re/security/advisories/GHSA-hvxv-v2gp-v93h
  • https://github.com/baresip/baresip/issues/3705

• python-starlette-0.52.1-2.fc43

Backport fix for CVE-2026-48710

• python-starlette-0.52.1-2.fc44

Backport fix for CVE-2026-48710

• nextcloud-33.0.4-1.el10_2

33.0.4 Release