ix for CVE-2025-26699: Potential denial-of-service vulnerability in django.utils.text.wrap()
Comment
Archive for Fedora Linux Distribution – Security Advisories
2744 results.
Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat_420xx devices amdgpu: DMCUB updates for various ASICs
patchlevel 1202 Security fix for CVE-2025-29768
patchlevel 1202 Security fix for CVE-2025-29768
Latest maintenance release from 7.1 branch. Changelog: https://github.com/FFmpeg/FFmpeg/blob/n7.1.1/Changelog . Contains backported fix for CVE-2025-22921.
Update to 134.0.6998.88 High CVE-2025-1920: Type Confusion in V8 High CVE-2025-2135: Type Confusion in V8 Medium CVE-2025-2136: Use after free in Inspector Medium CVE-2025-2137: Out of bounds read in V8
deadlock potential with VT-d and legacy PCI device pass-through [XSA-467, CVE-2025-1713]
Changes with Apache Traffic Server 9.2.9 #12071 – Fix chunked pipelined requests #12075 – Fix send 100 Continue optimization for GET #12077 – Fix intercept plugin ignoring ACL #12079 – ACL combination tests for 9.2.x
Update to 128.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/ https://www.thunderbird.net/en-US/thunderbird/128.8.0esr/releasenotes/
Fixes for xorg-x11-server CVEs.
Unbundle libxml.
Vyper ver. 0.4.1 Another one small fix Fix for a few known issues
Update to 128.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/ https://www.thunderbird.net/en-US/thunderbird/128.8.0esr/releasenotes/
Version 3.1.6 Released 2025-03-05 The |attr filter does not bypass the environment’s attribute lookup, allowing the sandbox to apply its checks.
Update to tree-sitter 0.25.2 and emacs 30.1.
Update to tree-sitter 0.25.2 and emacs 30.1.
Update to tree-sitter 0.25.2 and emacs 30.1.
Unbundle libxml2.
Update to 134.0.6998.35 * CVE-2025-1914: Out of bounds read in V8 * CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools * CVE-2025-1916: Use after free in Profiles
Updated to latest upstream (136.0)
Refresh patches Add -std=gnu17 to CFLAGS to fix the build 042-man2html-CVE-2021-40647.patch Add more patches from Debian
Refresh patches Add -std=gnu17 to CFLAGS to fix the build 042-man2html-CVE-2021-40647.patch Add more patches from Debian
The newest upstream commit Security fix for CVE-2025-27423
Updated to latest upstream (136.0)
This is an update fixing possible remote SQL injection.
This is an update fixing possible remote SQL injection.
Update to 0.3.5 to fix FTBFS and test failures
New version 4.2.11
Update to WebKitGTK 2.46.6: Fix a crash when enabling Skia CPU rendering. Fix several crashes and rendering issues. Fix CVE-2024-54543, CVE-2025-24143, CVE-2025-24150, CVE-2025-24158, CVE-2025-24162
CVE-2023-40022 rizin: Integer Overflow in C++ demangler logic CVE-2024-31669 rizin: Uncontrolled Resource Consumption via bin_pe_parse_imports CVE-2024-31670 rizin: buffer overflow via create_cache_bins CVE-2024-31668 rizin: improper neutralization of special elements via meta_set function