USN-8055-1: Evolution Data Server vulnerability
It was discovered that Evolution Data Server incorrectly handled removing
local cache files. An attacker could possibly use this issue to cause
Evolution Data Server to remove arbitrary files.
Aggregator
USN-8054-1: DjVuLibre vulnerabilities
It was discovered that DjVuLibre could be forced to execute a division
by zero in certain instances. A remote attacker could possibly use
this issue to cause applications to stop responding or crash, resulting
in a denial of service. (CVE-2021-46312)
It was discovered that DjVuLibre incorrectly handled certain memory
operations. If a user or automated system were tricked into processing a
specially crafted DjVu file, a remote attacker could cause applications
to stop responding or crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu
18.04 LTS, and Ubuntu 20.04 LTS. (CVE-2025-53367)
avr-binutils-2.45-4.fc43.1
FEDORA-2026-10cccbf560
Packages in this update:
- avr-binutils-2.45-4.fc43.1
- fix CVE-2025-11083: heap-based overflow
- fix CVE-2025-11082: heap-based overflow
- fix CVE-2025-11081: out-of-bounds read
avr-binutils-2.45-4.fc42.1
FEDORA-2026-405dab5af2
Packages in this update:
- avr-binutils-2.45-4.fc42.1
- fix CVE-2025-11083: heap-based overflow
- fix CVE-2025-11082: heap-based overflow
- fix CVE-2025-11081: out-of-bounds read
7.0-rc1: mainline
Version:7.0-rc1 (mainline)
Released:2026-02-22
Source:linux-7.0-rc1.tar.gz
Patch:full
erlang-26.2.5.17-1.fc43
FEDORA-2026-8a15e7a423
Packages in this update:
- erlang-26.2.5.17-1.fc43
Erlang ver. 26.2.5.17
erlang-26.2.5.17-1.fc42
FEDORA-2026-d51972eee3
Packages in this update:
- erlang-26.2.5.17-1.fc42
Erlang ver. 26.2.5.17
nextcloud-32.0.6-1.el10_2
FEDORA-EPEL-2026-5322e7a12f
Packages in this update:
- nextcloud-32.0.6-1.el10_2
32.0.6 release
nextcloud-32.0.6-1.fc42
FEDORA-2026-889607c7a0
Packages in this update:
- nextcloud-32.0.6-1.fc42
32.0.6 release
nextcloud-32.0.6-1.el10_1
FEDORA-EPEL-2026-7613774651
Packages in this update:
- nextcloud-32.0.6-1.el10_1
32.0.6 release
nextcloud-32.0.6-1.fc43
FEDORA-2026-ae48fa379e
Packages in this update:
- nextcloud-32.0.6-1.fc43
32.0.6 release
nextcloud-32.0.6-1.fc44
FEDORA-2026-94519b94d8
Packages in this update:
- nextcloud-32.0.6-1.fc44
32.0.6 release
pgadmin4-9.12-2.fc42
FEDORA-2026-9a4d6dd8eb
Packages in this update:
- pgadmin4-9.12-2.fc42
Refresh vendored bundle. fixes multiple CVEs.
pgadmin4-9.12-2.fc44
FEDORA-2026-2792616d35
Packages in this update:
- pgadmin4-9.12-2.fc44
Refresh vendored bundle. fixes multiple CVEs.
pgadmin4-9.12-2.fc43
FEDORA-2026-a0d40b97a8
Packages in this update:
- pgadmin4-9.12-2.fc43
Refresh vendored bundle. fixes multiple CVEs.
cef-145.0.25^chromium145.0.7632.75-4.fc44
FEDORA-2026-376794abc1
Packages in this update:
- cef-145.0.25^chromium145.0.7632.75-4.fc44
Update to cef-145.0.25 + chromium 145.0.7632.75
- CVE-2026-1861: Heap buffer overflow in libvpx
- CVE-2026-1862: Type Confusion in V8
- CVE-2026-2313: Use after free in CSS
- CVE-2026-2314: Heap buffer overflow in Codecs
- CVE-2026-2315: Inappropriate implementation in WebGPU
- CVE-2026-2316: Insufficient policy enforcement in Frames
- CVE-2026-2317: Inappropriate implementation in Animation
- CVE-2026-2318: Inappropriate implementation in PictureInPicture
- CVE-2026-2319: Race in DevTools
- CVE-2026-2320: Inappropriate implementation in File input
- CVE-2026-2321: Use after free in Ozone
- CVE-2026-2322: Inappropriate implementation in File input
- CVE-2026-2323: Inappropriate implementation in Downloads
- CVE-2026-2441: Use after free in CSS
cef-145.0.25^chromium145.0.7632.75-4.fc42
FEDORA-2026-a48b5f36ec
Packages in this update:
- cef-145.0.25^chromium145.0.7632.75-4.fc42
Update to cef-145.0.25 + chromium 145.0.7632.75
- CVE-2026-1861: Heap buffer overflow in libvpx
- CVE-2026-1862: Type Confusion in V8
- CVE-2026-2313: Use after free in CSS
- CVE-2026-2314: Heap buffer overflow in Codecs
- CVE-2026-2315: Inappropriate implementation in WebGPU
- CVE-2026-2316: Insufficient policy enforcement in Frames
- CVE-2026-2317: Inappropriate implementation in Animation
- CVE-2026-2318: Inappropriate implementation in PictureInPicture
- CVE-2026-2319: Race in DevTools
- CVE-2026-2320: Inappropriate implementation in File input
- CVE-2026-2321: Use after free in Ozone
- CVE-2026-2322: Inappropriate implementation in File input
- CVE-2026-2323: Inappropriate implementation in Downloads
- CVE-2026-2441: Use after free in CSS
cef-145.0.25^chromium145.0.7632.75-4.fc43
FEDORA-2026-0bced5158d
Packages in this update:
- cef-145.0.25^chromium145.0.7632.75-4.fc43
Update to cef-145.0.25 + chromium 145.0.7632.75
- CVE-2026-1861: Heap buffer overflow in libvpx
- CVE-2026-1862: Type Confusion in V8
- CVE-2026-2313: Use after free in CSS
- CVE-2026-2314: Heap buffer overflow in Codecs
- CVE-2026-2315: Inappropriate implementation in WebGPU
- CVE-2026-2316: Insufficient policy enforcement in Frames
- CVE-2026-2317: Inappropriate implementation in Animation
- CVE-2026-2318: Inappropriate implementation in PictureInPicture
- CVE-2026-2319: Race in DevTools
- CVE-2026-2320: Inappropriate implementation in File input
- CVE-2026-2321: Use after free in Ozone
- CVE-2026-2322: Inappropriate implementation in File input
- CVE-2026-2323: Inappropriate implementation in Downloads
- CVE-2026-2441: Use after free in CSS
next-20260220: linux-next
Version:next-20260220 (linux-next)
Released:2026-02-20
USN-8015-5: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- Cryptographic API;
- SMB network file system;
- io_uring subsystem;
(CVE-2025-38561, CVE-2025-39698, CVE-2025-40019)