Aggregator

FEDORA-2025-5869edf3de Packages in this update:

• libtiff-4.6.0-6.fc41.2

Update description:

• fix CVE-2025-8534: null pointer dereference in tiff2ps (rhbz#2386494)

• fix CVE-2024-13978: null pointer dereference in tiff2pdf (rhbz#2386201)

FEDORA-2025-3047046799 Packages in this update:

• libtiff-4.6.0-6.fc41.1

Update description:

• fix CVE-2024-13978: null pointer dereference in tiff2pdf (rhbz#2386201)

FEDORA-2025-f555a9146a Packages in this update:

• suricata-7.0.11-1.fc42

Update description:

CVE-2025-53537: HIGH CVE-2025-53538: HIGH

FEDORA-2025-a029ba03cc Packages in this update:

• suricata-7.0.11-1.fc41

Update description:

CVE-2025-53537: HIGH CVE-2025-53538: HIGH

FEDORA-EPEL-2025-9ac0c4b846 Packages in this update:

• suricata-7.0.11-1.el9

Update description:

CVE-2025-53537: HIGH CVE-2025-53538: HIGH

FEDORA-EPEL-2025-0bea88c1e3 Packages in this update:

• suricata-7.0.11-1.el8

Update description:

CVE-2025-53537: HIGH CVE-2025-53538: HIGH

FEDORA-2025-1903cfae97 Packages in this update:

• python3.6-3.6.15-49.fc42

Update description:

Security fix for CVE-2025-8194

FEDORA-2025-8f560fcc9b Packages in this update:

• python3.6-3.6.15-49.fc41

Update description:

Security fix for CVE-2025-8194

FEDORA-EPEL-2025-6117766f4b Packages in this update:

• jpegxl-0.7.2-1.el8

Update description:

Security bugfix from 0.7.x branch. Fixes CVE-2024-11403 and CVE-2024-11498.

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; (CVE-2025-38083, CVE-2025-37797)

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; (CVE-2025-38083)

Version:next-20250812 (linux-next) Released:2025-08-12

It was discovered that the 2D component of OpenJDK 17 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2025-30749, CVE-2025-50106) VMashroor Hasan Bhuiyan discovered that the JSSE component of OpenJDK 17 did not properly manage TLS 1.3 handshakes under certain circumstances. An attacker could possibly use this issue to obtain sensitive information. (CVE-2025-30754) Martin van Wingerden and Violeta Georgieva of Broadcom discovered that the Networking component of OpenJDK 17 did not properly manage network connections under certain circumstances. An attacker could possibly use this issue to obtain sensitive information. (CVE-2025-50059) In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: https://openjdk.org/groups/vulnerability/advisories/2025-07-15

FEDORA-2025-9e0e3043af Packages in this update:

• matrix-synapse-1.135.2-1.fc42

Update description:

Update to 1.135.2

Update to 1.135.0

FEDORA-2025-582f7ba2b9 Packages in this update:

• matrix-synapse-1.135.2-2.fc41

Update description:

Update to 1.135.2

Update to 1.135.0

FEDORA-2025-b8dc0e26ec Packages in this update:

• python3.13-3.13.6-1.fc41
• python3-docs-3.13.6-1.fc41

Update description:

3.13.6 is the sixth maintenance release of 3.13, containing around 200 bugfixes, build improvements and documentation changes since 3.13.5.

This update contains fix for https://www.cve.org/CVERecord?id=CVE-2025-8194

FEDORA-2025-1a9ad70c05 Packages in this update:

• python3.13-3.13.6-1.fc42
• python3-docs-3.13.6-1.fc42

Update description:

3.13.6 is the sixth maintenance release of 3.13, containing around 200 bugfixes, build improvements and documentation changes since 3.13.5.

This update contains fix for https://www.cve.org/CVERecord?id=CVE-2025-8194

FEDORA-2025-16acfe9927 Packages in this update:

• glib2-2.84.4-1.fc42

Update description:

Resolve CVE-2025-7039 (Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file()) with several other bug fixes.