Aggregator

Version:5.15.198 (longterm) Released:2026-01-19 Source:linux-5.15.198.tar.xz PGP Signature:linux-5.15.198.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-5.15.198

USN-7955-1 fixed vulnerabilities in urllib3. The update introduced a regression in response streaming on Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that urllib3 incorrectly handled decompression during HTTP redirects. An attacker could possibly use this issue to cause urllib3 to use excessive resources, causing a denial of service.

It was discovered that Pion DTLS, vendored in Snowflake, did not impose a limit on the amount of data that was buffered during the handshake. An attacker could possibly use the issue to cause a denial of service. (CVE-2022-29189) It was discovered that Pion DTLS, vendored in Snowflake, did not prevent the fragmentBuffer from processing zero length fragments. An attacker could possibly use the issue to cause a denial of service. (CVE-2022-29190) It was discovered that Pion DTLS, vendored in Snowflake, did not require CertificateVerify when Client Cert was sent. An attacker could possibly use the issue to cause a denial of service. (CVE-2022-29222)

Version:6.19-rc6 (mainline) Released:2026-01-18 Source:linux-6.19-rc6.tar.gz Patch:full (incremental)

FEDORA-EPEL-2026-825e0cae21 Packages in this update:

• qownnotes-26.1.7-4.el10_2

Update description:

See commit history

FEDORA-2026-4ea96a154e Packages in this update:

• qownnotes-26.1.7-4.fc42

Update description:

See commit history

FEDORA-EPEL-2026-7d20038bca Packages in this update:

• qownnotes-26.1.7-4.el9

Update description:

See commit history

FEDORA-2026-00a6b7589c Packages in this update:

• qownnotes-26.1.7-4.fc43

Update description:

See commit history

Automatic update for qownnotes-26.1.7-2.fc43.

Changelog for qownnotes * Fri Jan 16 2026 Artem Polishchuk <ego.cordatus@gmail.com> - 26.1.7-2 - Mask BR: botan-3 temporary * Thu Jan 15 2026 Artem Polishchuk <ego.cordatus@gmail.com> - 26.1.7-1 - 26.1.7 - Bundle Botan 2 for now

Version:6.1.161 (longterm) Released:2026-01-17 Source:linux-6.1.161.tar.xz PGP Signature:linux-6.1.161.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.1.161

Version:6.18.6 (stable) Released:2026-01-17 Source:linux-6.18.6.tar.xz PGP Signature:linux-6.18.6.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.18.6

Version:6.12.66 (longterm) Released:2026-01-17 Source:linux-6.12.66.tar.xz PGP Signature:linux-6.12.66.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.12.66

Version:6.6.121 (longterm) Released:2026-01-17 Source:linux-6.6.121.tar.xz PGP Signature:linux-6.6.121.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.6.121

FEDORA-2026-0e8fe3c8a3 Packages in this update:

• mingw-openexr-3.3.6-1.fc42

Update description:

Update to openexr-3.3.6, fixes multiple security issues.

FEDORA-2026-1fbf91067c Packages in this update:

• mingw-openexr-3.3.6-1.fc43

Update description:

Update to openexr-3.3.6, fixes multiple security issues.

FEDORA-2026-20b533bbc7 Packages in this update:

• mingw-libsoup-2.74.3-16.fc43

Update description:

Backport fix for CVE-2025-14523

FEDORA-2026-c3c95cc5f9 Packages in this update:

• mingw-libsoup-2.74.3-16.fc42

Update description:

Backport fix for CVE-2025-14523

FEDORA-2026-46fe567fd3 Packages in this update:

• mingw-glib2-2.86.3-2.fc43

Update description:

Backport patch for CVE-2026.0988.

FEDORA-2026-0955012bb5 Packages in this update:

• mingw-glib2-2.84.4-2.fc42

Update description:

Backport patch for CVE-2026.0988.

FEDORA-2026-dc77eb63ae Packages in this update:

• mingw-harfbuzz-11.5.1-2.fc43

Update description:

Backport patch for CVE-2026-22693.

FEDORA-2026-2301995d0a Packages in this update:

• mingw-harfbuzz-10.2.0-3.fc42

Update description:

Backport patch for CVE-2026-22693.