Aggregator

log4cxx-1.7.0-3.el10_3

5 days 9 hours ago
FEDORA-EPEL-2026-ceb16b3114 Packages in this update:
  • log4cxx-1.7.0-3.el10_3
Update description:

Update to log4cxx 1.7.0.

Fixes CVE-2026-40023: XMLLayout did not escape characters forbidden by the XML 1.0 specification, which could cause conforming XML parsers to reject the produced document, silently dropping log records.

No ABI-relevant changes; liblog4cxx SONAME (%{sover}) is unchanged.

log4cxx-1.7.0-3.el9

5 days 9 hours ago
FEDORA-EPEL-2026-c8c6a5b628 Packages in this update:
  • log4cxx-1.7.0-3.el9
Update description:

Update to log4cxx 1.7.0.

Fixes CVE-2026-40023: XMLLayout did not escape characters forbidden by the XML 1.0 specification, which could cause conforming XML parsers to reject the produced document, silently dropping log records.

No ABI-relevant changes; liblog4cxx SONAME (%{sover}) is unchanged.

log4cxx-1.7.0-2.fc43

5 days 9 hours ago
FEDORA-2026-31a8569c4b Packages in this update:
  • log4cxx-1.7.0-2.fc43
Update description:

Update to log4cxx 1.7.0.

Fixes CVE-2026-40023: XMLLayout did not escape characters forbidden by the XML 1.0 specification, which could cause conforming XML parsers to reject the produced document, silently dropping log records.

No ABI-relevant changes; liblog4cxx SONAME (%{sover}) is unchanged.

hplip-3.26.4-7.fc43

5 days 11 hours ago
FEDORA-2026-7d23917d90 Packages in this update:
  • hplip-3.26.4-7.fc43
Update description:

fix CVE-2026-14544 - incomplete fix after CVE-2026-8631 (fedora#2496773,

fedora#2496772)

hplip-3.26.4-7.fc44

5 days 11 hours ago
FEDORA-2026-d9b508b972 Packages in this update:
  • hplip-3.26.4-7.fc44
Update description:

fix CVE-2026-14544 - incomplete fix after CVE-2026-8631 (fedora#2496773,

fedora#2496772)

hplip-3.26.4-7.fc45

5 days 11 hours ago
FEDORA-2026-c5b6bb47c5 Packages in this update:
  • hplip-3.26.4-7.fc45
Update description:

Automatic update for hplip-3.26.4-7.fc45.

Changelog * Fri Jul 3 2026 Zdenek Dohnal <zdohnal@redhat.com> - 3.26.4-7 - fix CVE-2026-14544 - incomplete fix after CVE-2026-8631 (fedora#2496773, fedora#2496772)

log4cxx-1.7.0-2.fc44

5 days 12 hours ago
FEDORA-2026-43767b6007 Packages in this update:
  • log4cxx-1.7.0-2.fc44
Update description:

Update to log4cxx 1.7.0.

New features: fallback-ref appender attribute, Qt CMake find_package component, TelnetAppender NonBlocking option.

Bug fixes: non-ASCII JSON encoding, invalid XML 1.0 characters in XML output, crash on recursive XML config references, possible UB during configuration changes, message loss during recursive logging, ODBCAppender prepared-statement buffer lifetimes.

No ABI-relevant changes; liblog4cxx SONAME (%{sover}) is unchanged.

chromium-150.0.7871.46-1.el10_3

5 days 13 hours ago
FEDORA-EPEL-2026-81e775879e Packages in this update:
  • chromium-150.0.7871.46-1.el10_3
Update description:

chromium-150.0.7871.46 security release includes 433 security fixes, CVE-2026-13774 - CVE-2026-14432

chromium-150.0.7871.46-1.fc44

5 days 13 hours ago
FEDORA-2026-94bb57e96c Packages in this update:
  • chromium-150.0.7871.46-1.fc44
Update description:

chromium-150.0.7871.46 security release includes 433 security fixes, CVE-2026-13774 - CVE-2026-14432

chromium-150.0.7871.46-1.el9

5 days 13 hours ago
FEDORA-EPEL-2026-9c94d41849 Packages in this update:
  • chromium-150.0.7871.46-1.el9
Update description:

chromium-150.0.7871.46 security release includes 433 security fixes, CVE-2026-13774 - CVE-2026-14432

chromium-150.0.7871.46-1.fc43

5 days 13 hours ago
FEDORA-2026-88eee44bfb Packages in this update:
  • chromium-150.0.7871.46-1.fc43
Update description:

chromium-150.0.7871.46 security release includes 433 security fixes, CVE-2026-13774 - CVE-2026-14432

chromium-150.0.7871.46-1.el10_2

5 days 13 hours ago
FEDORA-EPEL-2026-1b59d56428 Packages in this update:
  • chromium-150.0.7871.46-1.el10_2
Update description:

chromium-150.0.7871.46 security release includes 433 security fixes, CVE-2026-13774 - CVE-2026-14432

USN-8503-1: ncurses vulnerability

5 days 22 hours ago
It was discovered that ncurses incorrectly handled certain terminfo entries in the infocmp tool. An attacker could possibly use this issue to cause a denial of service via a crafted terminfo file. The default compiler options for affected releases should reduce the vulnerability to a denial of service.