Aggregator

FEDORA-2025-8c88aa0c74 Packages in this update:

• cri-o1.32-1.32.10-1.fc41

Update description:

Update to release v1.32.10

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; - Clock framework and drivers; - GPU drivers; - IIO subsystem; - InfiniBand drivers; - Media drivers; - MemoryStick subsystem; - Network drivers; - NTB driver; - PCI subsystem; - Remote Processor subsystem; - Thermal drivers; - Virtio Host (VHOST) subsystem; - 9P distributed file system; - File systems infrastructure; - JFS file system; - Network file system (NFS) server daemon; - NTFS3 file system; - SMB network file system; - Memory management; - RDMA verbs API; - Kernel fork() syscall; - Tracing infrastructure; - Watch queue notification mechanism; - Asynchronous Transfer Mode (ATM) subsystem; - Networking core; - IPv4 networking; - IPv6 networking; - Netfilter; - Network traffic control; - SCTP protocol; - TLS protocol; - SoC Audio for Freescale CPUs drivers; (CVE-2025-39728, CVE-2025-23136, CVE-2025-22062, CVE-2025-22035, CVE-2025-22020, CVE-2025-22083, CVE-2025-22071, CVE-2025-22060, CVE-2025-22073, CVE-2025-22044, CVE-2025-22063, CVE-2025-22079, CVE-2025-22057, CVE-2025-22095, CVE-2025-39735, CVE-2025-39682, CVE-2025-22058, CVE-2025-22021, CVE-2025-22018, CVE-2025-22056, CVE-2025-22054, CVE-2025-22080, CVE-2025-22039, CVE-2025-22019, CVE-2025-22038, CVE-2025-22028, CVE-2023-53034, CVE-2024-58092, CVE-2025-38637, CVE-2025-22089, CVE-2025-40114, CVE-2025-22068, CVE-2025-37937, CVE-2025-22070, CVE-2025-22072, CVE-2025-22086, CVE-2025-22050, CVE-2025-22040, CVE-2025-22065, CVE-2025-38575, CVE-2025-22064, CVE-2025-22033, CVE-2025-22041, CVE-2025-22090, CVE-2025-22036, CVE-2025-23138, CVE-2025-22047, CVE-2025-38240, CVE-2025-22066, CVE-2025-22042, CVE-2025-38152, CVE-2025-22055, CVE-2025-22081, CVE-2025-22045, CVE-2025-22053, CVE-2025-22075, CVE-2025-22027, CVE-2025-22025, CVE-2025-22097)

FEDORA-2025-1e7710541e Packages in this update:

• cri-o1.34-1.34.2-1.fc42

Update description:

• Update to release 1.34.2
• Resolves: rhbz#2407595, rhbz#2407866, rhbz#2408142, rhbz#2408577
• Resolves: rhbz#2408640, rhbz#2408703, rhbz#2409050, rhbz#2409333
• Resolves: rhbz#2409612, rhbz#2409998, rhbz#2410285, rhbz#2410563
• Resolves: rhbz#2410930, rhbz#2411198, rhbz#2411461, rhbz#2412526
• Resolves: rhbz#2412678, rhbz#2412758

FEDORA-2025-91677b56d4 Packages in this update:

• cri-o1.32-1.32.10-1.fc42

Update description:

Update to release v1.32.10

FEDORA-2025-b339c2eaad Packages in this update:

• cri-o1.33-1.33.6-1.fc43

Update description:

• Update to release 1.33.6
• Resolves: rhbz#2407594, rhbz#2407865, rhbz#2408141, rhbz#2408575
• Resolves: rhbz#2408639, rhbz#2408702, rhbz#2409049, rhbz#2409332
• Resolves: rhbz#2409611, rhbz#2409997, rhbz#2410284, rhbz#2410562
• Resolves: rhbz#2410929, rhbz#2411197, rhbz#2411460, rhbz#2412525
• Resolves: rhbz#2412677, rhbz#2412757

FEDORA-2025-723e0fd8bd Packages in this update:

• cri-o1.34-1.34.2-1.fc43

Update description:

• Update to release 1.34.2
• Resolves: rhbz#2407595, rhbz#2407866, rhbz#2408142, rhbz#2408577
• Resolves: rhbz#2408640, rhbz#2408703, rhbz#2409050, rhbz#2409333
• Resolves: rhbz#2409612, rhbz#2409998, rhbz#2410285, rhbz#2410563
• Resolves: rhbz#2410930, rhbz#2411198, rhbz#2411461, rhbz#2412526
• Resolves: rhbz#2412678, rhbz#2412758

FEDORA-2025-a246780676 Packages in this update:

• cri-o1.32-1.32.10-1.fc43

Update description:

• Update to release v1.32.10
• Resolves: rhbz#2407593, rhbz#2407864, rhbz#2408140, rhbz#2408571
• Resolves: rhbz#2408638, rhbz#2408701, rhbz#2409048, rhbz#2409331
• Resolves: rhbz#2409610, rhbz#2409996, rhbz#2410283, rhbz#2410561
• Resolves: rhbz#2410928, rhbz#2411196, rhbz#2411459, rhbz#2412524
• Resolves: rhbz#2412676, rhbz#2412756

FEDORA-2025-c5b10ae815 Packages in this update:

• cri-o1.34-1.34.2-1.fc44

Update description:

Automatic update for cri-o1.34-1.34.2-1.fc44.

Changelog * Tue Nov 11 2025 Bradley G Smith <bradley.g.smith@gmail.com> - 1.34.2-1 - Update to release 1.34.2 - Resolves: rhbz#2407595, rhbz#2407866, rhbz#2408142, rhbz#2408577 - Resolves: rhbz#2408640, rhbz#2408703, rhbz#2409050, rhbz#2409333 - Resolves: rhbz#2409612, rhbz#2409998, rhbz#2410285, rhbz#2410563 - Resolves: rhbz#2410930, rhbz#2411198, rhbz#2411461, rhbz#2412526 - Resolves: rhbz#2412678, rhbz#2412758

FEDORA-2025-fa02acfc0f Packages in this update:

• cri-o1.33-1.33.6-1.fc44

Update description:

Automatic update for cri-o1.33-1.33.6-1.fc44.

Changelog * Tue Nov 11 2025 Bradley G Smith <bradley.g.smith@gmail.com> - 1.33.6-1 - Update to release 1.33.6 - Resolves: rhbz#2407594, rhbz#2407865, rhbz#2408141, rhbz#2408575 - Resolves: rhbz#2408639, rhbz#2408702, rhbz#2409049, rhbz#2409332 - Resolves: rhbz#2409611, rhbz#2409997, rhbz#2410284, rhbz#2410562 - Resolves: rhbz#2410929, rhbz#2411197, rhbz#2411460, rhbz#2412525 - Resolves: rhbz#2412677, rhbz#2412757

FEDORA-2025-c48cd0beee Packages in this update:

• cri-o1.32-1.32.10-1.fc44

Update description:

Automatic update for cri-o1.32-1.32.10-1.fc44.

Changelog * Tue Nov 11 2025 Bradley G Smith <bradley.g.smith@gmail.com> - 1.32.10-1 - Update to release v1.32.10 - Resolves: rhbz#2407593, rhbz#2407864, rhbz#2408140, rhbz#2408571 - Resolves: rhbz#2408638, rhbz#2408701, rhbz#2409048, rhbz#2409331 - Resolves: rhbz#2409610, rhbz#2409996, rhbz#2410283, rhbz#2410561 - Resolves: rhbz#2410928, rhbz#2411196, rhbz#2411459, rhbz#2412524 - Resolves: rhbz#2412676, rhbz#2412756

USN-7836-1 fixed vulnerabilities in Bind. This update provides the corresponding fixes for Ubuntu 20.04 LTS. Original advisory details: Zuyao Xu and Xiang Li discovered that Bind incorrectly handled certain malformed DNSKEY records. A remote attacker could possibly use this issue to cause Bind to consume resources, resulting in a denial of service. (CVE-2025-8677) Yuxiao Wu, Yunyi Zhang, Baojun Liu, and Haixin Duan discovered that Bind incorrectly accepted certain records from answers. A remote attacker could possibly use this issue to perform a cache poisoning attack. (CVE-2025-40778) Amit Klein and Omer Ben Simhon discovered that Bind used a weak PRNG. A remote attacker could possibly use this issue to perform a cache poisoning attack. (CVE-2025-40780)

FEDORA-2025-2d9e01e0fc Packages in this update:

• firefox-145.0-2.fc43

Update description:

• Updated to latest upstream (145.0)

FEDORA-2025-ba7105c612 Packages in this update:

• firefox-145.0-2.fc41

Update description:

• Updated to latest upstream (145.0)

• Added fix for mzbz#1990430 (crashes)

• Updated to latest upstream (144.0)

FEDORA-2025-457ee8a964 Packages in this update:

• firefox-145.0-2.fc42

Update description:

• Updated to latest upstream (145.0)

FEDORA-2025-e491c93405 Packages in this update:

• dovecot-2.4.1-8.fc43

Update description:

fixes CVE-2025-30189

Version:next-20251112 (linux-next) Released:2025-11-12

FEDORA-EPEL-2025-cc5498e802 Packages in this update:

• python-pdfminer-20220319-3.el8

Update description:

Backport security fix for GHSA-wf5f-4jwr-ppcp / CVE-2025-64512

FEDORA-2025-8a248ee4f4 Packages in this update:

• buildah-1.42.1-1.fc42
• podman-5.7.0-1.fc42

Update description:

Automatic update for podman-5.7.0-1.fc42, buildah-1.42.1-1.fc42.

Changelog for podman * Tue Nov 11 2025 Packit <hello@packit.dev> - 5:5.7.0-1 - Update to 5.7.0 upstream release * Thu Oct 30 2025 Packit <hello@packit.dev> - 5:5.7.0~rc2-1 - Update to 5.7.0-rc2 upstream release * Tue Oct 28 2025 Lokesh Mandvekar <lsm5@redhat.com> - 5:5.7.0~rc1-1 - bump to v5.7.0-rc1 Changelog for buildah * Tue Nov 11 2025 Packit <hello@packit.dev> - 2:1.42.1-1 - Update to 1.42.1 upstream release * Mon Nov 03 2025 Lokesh Mandvekar <lsm5@redhat.com> - 2:1.42.0-3 - Rebuild for CVE fixes * Thu Oct 23 2025 Lokesh Mandvekar <lsm5@redhat.com> - 2:1.42.0-2 - cleanup changelog * Wed Oct 22 2025 Packit <hello@packit.dev> - 2:1.42.0-1 - Update to 1.42.0 upstream release