Fedora Security Advisories

FEDORA-2026-5ea62e4e96 Packages in this update:

• libopenmpt-0.8.5-1.fc44

Update description:

Potential security fix plus bug-fixes in 0.8.5: https://lib.openmpt.org/libopenmpt/2026/03/22/security-updates-0.8.5-0.7.18-0.6.27-0.5.41-0.4.53/

FEDORA-2026-a7473911c2 Packages in this update:

• libopenmpt-0.8.5-1.fc42

Update description:

Potential security fix plus bug-fixes in 0.8.5: https://lib.openmpt.org/libopenmpt/2026/03/22/security-updates-0.8.5-0.7.18-0.6.27-0.5.41-0.4.53/

FEDORA-EPEL-2026-2bf306a52c Packages in this update:

• ntpd-rs-1.7.1-1.el10_1

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-EPEL-2026-672ec46e30 Packages in this update:

• ntpd-rs-1.7.1-1.el10_3

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-EPEL-2026-5391356877 Packages in this update:

• ntpd-rs-1.7.1-1.el10_2

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-2026-2dc4882154 Packages in this update:

• ntpd-rs-1.7.1-1.fc42

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-2026-cbe2315bad Packages in this update:

• ntpd-rs-1.7.1-1.fc43

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-2026-eb0777262e Packages in this update:

• ntpd-rs-1.7.1-1.fc44

Update description:

Update to version 1.7.1.

Includes the fix for CVE-2026-26076: https://github.com/pendulum-project/ntpd-rs/security/advisories/GHSA-c7j7-rmvr-fjmv

Release notes:

• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.0
• https://github.com/pendulum-project/ntpd-rs/releases/tag/v1.7.1

FEDORA-2026-31c619152e Packages in this update:

• cmake-3.31.11-1.fc42

Update description:

• Update to v3.31.11.

FEDORA-2026-46d93351cd Packages in this update:

• cmake-3.31.11-1.fc43

Update description:

• Update to v3.31.11.

FEDORA-2026-8deecdc6c6 Packages in this update:

• rust-cargo-vendor-filterer-0.5.18-4.fc44

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-e5b9665269 Packages in this update:

• rust-cargo-rpmstatus-0.2.4-3.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-ad73d6fafe Packages in this update:

• rust-cargo-c-0.10.19-2.fc44

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-9e26f48b50 Packages in this update:

• stgit-2.5.5-5.fc42

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-609bc373aa Packages in this update:

• rustup-1.29.0-2.fc42

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-d7cc8fd693 Packages in this update:

• rust-cargo-rpmstatus-0.2.4-3.fc44

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-d6b7d7e177 Packages in this update:

• stgit-2.5.5-5.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-ae0b7bdc90 Packages in this update:

• bpfman-0.5.4-7.fc45

Update description:

Automatic update for bpfman-0.5.4-7.fc45.

Changelog * Sun Mar 22 2026 Daniel Mellado <dmellado@fedoraproject.org> - 0.5.4-7 - Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672

FEDORA-2026-9defa0fb00 Packages in this update:

• rustup-1.29.0-2.fc43

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056

FEDORA-2026-25285d56e4 Packages in this update:

• stgit-2.5.5-5.fc44

Update description:

Rebuilt with rust-tar 0.4.45 for CVE-2026-33056