Aggregator | Linuxlookup

It was discovered that jaraco.context incorrectly handled certain zip file paths. An attacker could possibly use this issue to extract arbitrary files outside of the intented extraction directory.

yarnpkg-1.22.22-16.fc42

Fedora Security Advisories

1 week 2 days ago

FEDORA-2026-2809f801f3 Packages in this update:

yarnpkg-1.22.22-16.fc42

Update description:

Regenerate vendor tarball. Fixes CVE-2025-13465.

yarnpkg-1.22.22-16.fc43

Fedora Security Advisories

1 week 2 days ago

FEDORA-2026-a75abb3f2b Packages in this update:

yarnpkg-1.22.22-16.fc43

Update description:

Regenerate vendor tarball. Fixes CVE-2025-13465.

pgadmin4-9.11-3.fc42

Fedora Security Advisories

1 week 2 days ago

FEDORA-2026-3062e10d87 Packages in this update:

pgadmin4-9.11-3.fc42

Update description:

Regenerate vendor tarball. Fixes CVE-2025-13465.

pgadmin4-9.11-3.fc43

Fedora Security Advisories

1 week 2 days ago

FEDORA-2026-4e47f4d911 Packages in this update:

pgadmin4-9.11-3.fc43

Update description:

Regenerate vendor tarball. Fixes CVE-2025-13465.

phpunit12-12.5.8-1.fc42

Fedora Security Advisories

1 week 3 days ago

FEDORA-2026-8c25940d05 Packages in this update:

phpunit12-12.5.8-1.fc42

Update description: Version 12.5.8 - 2026-01-27 Changed

To prevent Poisoned Pipeline Execution (PPE) attacks using prepared .coverage files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs

Version 12.5.7 - 2026-01-24 Fixed

#6362: Manually instantiated test doubles are broken since PHPUnit 11.2
#6470: Infinite recursion in Count::getCountOf() for unusal implementations of Iterator or IteratorAggregate

Version 12.5.6 - 2026-01-16 Changed

Reverted a change that caused a build failure for the PHP project's nightly community job

Version 12.5.5 - 2026-01-15 Deprecated

#6461: any() matcher (soft deprecation)

Fixed

#6470: Mocking a class with a property hook setter accepting more types than the property results in a fatal error

phpunit12-12.5.8-1.fc43

Fedora Security Advisories

1 week 3 days ago

FEDORA-2026-470a48f838 Packages in this update:

phpunit12-12.5.8-1.fc43

Update description: Version 12.5.8 - 2026-01-27 Changed

To prevent Poisoned Pipeline Execution (PPE) attacks using prepared .coverage files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs

Version 12.5.7 - 2026-01-24 Fixed

#6362: Manually instantiated test doubles are broken since PHPUnit 11.2
#6470: Infinite recursion in Count::getCountOf() for unusal implementations of Iterator or IteratorAggregate

Version 12.5.6 - 2026-01-16 Changed

Reverted a change that caused a build failure for the PHP project's nightly community job

Version 12.5.5 - 2026-01-15 Deprecated

#6461: any() matcher (soft deprecation)

Fixed

#6470: Mocking a class with a property hook setter accepting more types than the property results in a fatal error

phpunit11-11.5.50-1.fc43

Fedora Security Advisories

1 week 3 days ago

FEDORA-2026-8ccfe50c58 Packages in this update:

phpunit11-11.5.50-1.fc43

Update description: Version 11.5.50 - 2026-01-27 Changed

To prevent Poisoned Pipeline Execution (PPE) attacks using prepared .coverage files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs

Version 11.5.49 - 2026-01-24 Fixed

#6362: Manually instantiated test doubles are broken since PHPUnit 11.2
#6470: Infinite recursion in Count::getCountOf() for unusal implementations of Iterator or IteratorAggregate

Version 11.5.48 - 2026-01-16 Changed

Reverted a change that caused a build failure for the PHP project's nightly community job

Version 11.5.47 - 2026-01-15 Fixed

#6470: Mocking a class with a property hook setter accepting more types than the property results in a fatal error

phpunit11-11.5.50-1.fc42

Fedora Security Advisories

1 week 3 days ago

FEDORA-2026-c3b42a28dd Packages in this update:

phpunit11-11.5.50-1.fc42

Update description: Version 11.5.50 - 2026-01-27 Changed

To prevent Poisoned Pipeline Execution (PPE) attacks using prepared .coverage files in pull requests, a PHPT test will no longer be run if the temporary file for writing code coverage information already exists before the test runs

Version 11.5.49 - 2026-01-24 Fixed

#6362: Manually instantiated test doubles are broken since PHPUnit 11.2
#6470: Infinite recursion in Count::getCountOf() for unusal implementations of Iterator or IteratorAggregate

Version 11.5.48 - 2026-01-16 Changed

Reverted a change that caused a build failure for the PHP project's nightly community job

Version 11.5.47 - 2026-01-15 Fixed

#6470: Mocking a class with a property hook setter accepting more types than the property results in a fatal error

opencc-1.0.5-4.el8

Fedora Security Advisories

1 week 3 days ago

FEDORA-EPEL-2026-cf486df588 Packages in this update:

opencc-1.0.5-4.el8

Update description:

Fix CVE-2025-15536

DSA-6113-1 openssl - security update

Debian Security Advisories

1 week 3 days ago

https://security-tracker.debian.org/tracker/DSA-6113-1

DSA-6112-1 openjdk-21 - security update

Debian Security Advisories

1 week 3 days ago

https://security-tracker.debian.org/tracker/DSA-6112-1

openqa-5^20260126git19189f0-1.fc43 os-autoinst-5^20260123git72cabd0-1.fc43

Fedora Security Advisories

1 week 3 days ago

FEDORA-2026-abd2d2d60c Packages in this update:

openqa-5^20260126git19189f0-1.fc43
os-autoinst-5^20260123git72cabd0-1.fc43

Update description:

This update provides new upstream snapshots of openQA and os-autoinst, with various fixes and enhancements. Please see upstream changelogs for details. They also address a CVE by updating a bundled javascript library, though we're fairly sure openQA didn't actually expose the vulnerability anyway.