Fedora Security Advisories

• rust-eif_build-0.2.1-7.el9

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-eif_build-0.2.1-7.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-tealdeer-1.7.3-2.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-tealdeer-1.7.3-2.fc44

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-oo7-cli-0.4.3-5.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-oo7-cli-0.4.3-5.fc44

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-ingredients-0.2.2-4.fc44

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-ingredients-0.2.2-4.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-sevctl-0.6.2-7.fc44

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-sevctl-0.6.2-7.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-coreos-installer-0.26.0-2.fc44

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• rust-coreos-installer-0.26.0-2.fc43

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues:

• CVE-2026-41676 / GHSA-pqf5-4pqq-29f5
• CVE-2026-41677 / GHSA-xmgf-hq76-4vx2
• CVE-2026-41678 / GHSA-8c75-8mhr-p7r9
• CVE-2026-41681 / GHSA-ghm9-cr32-g9qj
• CVE-2026-41898 / GHSA-hppc-g8h3-xhp3
• CVE-2026-42327 / GHSA-xp3w-r5p5-63rr
• CVE-2026-44662 / GHSA-xv59-967r-8726

• editorconfig-0.12.11-1.el8

Update to 0.12.11: security fix for CVE-2026-40489.

• editorconfig-0.12.11-1.el9

Update to 0.12.11: security fix for CVE-2026-40489.

• rust-sequoia-keystore-server-0.2.0-7.el9
• rust-sequoia-openpgp-2.3.0-1.el9
• rust-sequoia-sq-1.3.1-11.el9

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

This update includes rebuilds of all affected applications to pick up the fixes for these issues.

• rust-sequoia-openpgp-2.3.0-1.el10_2

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

• rust-sequoia-openpgp-2.3.0-1.el10_3

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

• rust-rpm-sequoia-1.10.2-2.fc42
• rust-sequoia-chameleon-gnupg-0.13.1-12.fc42
• rust-sequoia-git-0.6.0-2.fc42
• rust-sequoia-keystore-server-0.2.0-7.fc42
• rust-sequoia-octopus-librnp-1.11.1-6.fc42
• rust-sequoia-openpgp-2.3.0-1.fc42
• rust-sequoia-sop-0.37.3-3.fc42
• rust-sequoia-sq-1.3.1-11.fc42
• rust-sequoia-sqv-1.3.0-6.fc42

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

This update includes rebuilds of all affected applications to pick up the fixes for these issues.

Update to version 1.10.2. Addresses CVE-2026-2625.

• rust-rpm-sequoia-1.10.2-2.fc43
• rust-sequoia-chameleon-gnupg-0.13.1-12.fc43
• rust-sequoia-git-0.6.0-2.fc43
• rust-sequoia-keystore-server-0.2.0-7.fc43
• rust-sequoia-octopus-librnp-1.11.1-6.fc43
• rust-sequoia-openpgp-2.3.0-1.fc43
• rust-sequoia-sop-0.37.3-3.fc43
• rust-sequoia-sq-1.3.1-11.fc43
• rust-sequoia-sqv-1.3.0-6.fc43

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

This update includes rebuilds of all affected applications to pick up the fixes for these issues.

• rust-podman-sequoia-0.3.2-2.fc44
• rust-rpm-sequoia-1.10.2-2.fc44
• rust-sequoia-chameleon-gnupg-0.13.1-12.fc44
• rust-sequoia-git-0.6.0-2.fc44
• rust-sequoia-keystore-server-0.2.0-7.fc44
• rust-sequoia-octopus-librnp-1.11.1-6.fc44
• rust-sequoia-openpgp-2.3.0-1.fc44
• rust-sequoia-sop-0.37.3-3.fc44
• rust-sequoia-sq-1.3.1-11.fc44
• rust-sequoia-sqv-1.3.0-6.fc44

Update sequoia-openpgp to version 2.3.0.

This includes three security relevant fixes (assigned CVE-2026-42783, CVE-2026-42784, and CVE-not-assigned-yet), see "Notable fixes" in the release notes: https://gitlab.com/sequoia-pgp/sequoia/-/raw/openpgp/v2.3.0/openpgp/NEWS

This update includes rebuilds of all affected applications to pick up the fixes for these issues.