5 days 20 hours ago
FEDORA-2026-c47c476fdd
Packages in this update:
Update description:
Update to 1.73.3; Fixes: RHBZ#2426392, RHBZ#2415186
5 days 20 hours ago
FEDORA-2026-a00f52ac25
Packages in this update:
Update description:
Update to 1.73.3; Fixes: RHBZ#2426392, RHBZ#2415186
5 days 20 hours ago
FEDORA-EPEL-2026-a16c1151d2
Packages in this update:
Update description:
Update to 1.73.3; Fixes: RHBZ#2426392, RHBZ#2415186
5 days 21 hours ago
5 days 21 hours ago
5 days 21 hours ago
5 days 21 hours ago
6 days 8 hours ago
It was discovered that the .NET Microsoft.Bcl.Memory NuGet package did not
properly handle certain malformed Base64Url encoded input. An attacker could
possibly use this issue to cause .NET to crash, resulting in a denial of
service. This issue only affected .NET 9.0 and .NET 10.0. (CVE-2026-26127)
Bartłomiej Dach discovered that .NET's SignalR server component did not
properly manage resource consumption when processing certain messages. An
attacker could possibly use this issue to exhaust internal buffers, resulting
in a denial of service. (CVE-2026-26130)
6 days 8 hours ago
FEDORA-2026-2fef29d32a
Packages in this update:
Update description:
Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 - Closes rhbz#2446359
6 days 9 hours ago
Version:next-20260311 (linux-next)
Released:2026-03-11
6 days 12 hours ago
FEDORA-2026-0523662d59
Packages in this update:
Update description:
Automatic update for bpfman-0.5.4-6.fc45.
Changelog
* Wed Mar 11 2026 Daniel Mellado <
dmellado@fedoraproject.org> - 0.5.4-6
- Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 - Closes rhbz#2446359
6 days 13 hours ago
Zhicheng Chen discovered that curl could incorrectly reuse the wrong
connection for Negotiate-authenticated HTTP or HTTPS requests. This could
result in the use of credentials from a different connection, contrary to
expectations. (CVE-2026-1965)
It was discovered that curl incorrectly leaked OAuth2 bearer tokens when
following a redirect. This could result in tokens being sent to the wrong
host, contrary to expectations. (CVE-2026-3783)
Muhamad Arga Reksapati discovered that curl incorrectly reused existing
HTTP proxy connections even if the request used different credentials. This
could result in the use of incorrect credentials, contrary to expectations.
(CVE-2026-3784)
Daniel Wade discovered that curl incorrectly handled certain memory
operations when doing a second SMB request to the same host. An attacker
could use this issue to cause curl to crash, resulting in a denial of
service, or possibly execute arbitrary code. This issue only affected
Ubuntu 25.10. (CVE-2026-3805)
Yihang Zhou discovered that curl incorrectly reused .netrc file credentials
when following redirects. This could result in the use of credentials for
a different host, contrary to expectations. This issue only affected Ubuntu
22.04 LTS and Ubuntu 24.04 LTS. (CVE-2025-0167)
6 days 16 hours ago
It was discovered that libpng did not properly handle memory when processing
certain PNG files. An attacker could possibly use this issue to cause libpng
to crash, resulting in a denial of service, or disclose sensitive information.
(CVE-2025-64505)
Joshua Inscoe discovered that libpng did not properly handle memory when
processing certain PNG files. An attacker could possibly use this issue
to cause libpng to crash, resulting in a denial of service, disclose sensitive
information, or execute arbitrary code. (CVE-2026-25646)
6 days 16 hours ago
It was discovered that GeoPandas incorrectly handled certain input. An
attacker could possibly use this issue to perform SQL injection attacks.
6 days 17 hours ago
FEDORA-EPEL-2026-108ee839c4
Packages in this update:
Update description:
Upstream announcements:
6 days 17 hours ago
FEDORA-2026-d8dab3284b
Packages in this update:
Update description:
Upstream announcements:
6 days 17 hours ago
FEDORA-EPEL-2026-f5c7dc5bca
Packages in this update:
Update description:
Upstream announcements:
6 days 17 hours ago
FEDORA-EPEL-2026-299b865866
Packages in this update:
Update description:
Upstream announcements:
6 days 17 hours ago
FEDORA-2026-e53e7de687
Packages in this update:
Update description:
Upstream announcements:
6 days 17 hours ago
FEDORA-2026-30aaa038c8
Packages in this update:
Update description:
Upstream announcements: