Mutiple vulnerabilities in the Viridian interface [XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143] Arm issues with page refcounting [XSA-473, CVE-2025-58144, CVE-2025-58145]
Comment
Archive for Fedora Linux Distribution – Security Advisories
2744 results.
Rebase to 2.7.2
Update to 2.79.0
Update to 2.79.0
Update to 140.0.7339.127 CVE-2025-10200: Use after free in Serviceworker CVE-2025-10201: Inappropriate implementation in Mojo
New upstream release (143.0)
This update upgrade the package to version 0.36. This version fixes CVE-2025-40923 by using Crypt::SysRandom to generate secure session IDs.
This update upgrade the package to version 0.44. This version fixes CVE-2025-40924 by using Crypt::SysRandom to generate properly random session IDs.
This update upgrade the package to version 1.019. This version fixes CVE-2025-40920 by using Crypt::SysRandom to generate nonces instead of Data::UUID.
Update to 140.0.7339.127 CVE-2025-10200: Use after free in Serviceworker CVE-2025-10201: Inappropriate implementation in Mojo
CVE-2025-8067 Out-Of-Bounds Read in UDisks Daemon
Exiv2 0.28.6 + patch to fix silent abi breakage Exiv2 v0.28.6 (Fixes two low severity CVEs)
Apply fix for CVE-2025-9300
Apply fix for CVE-2025-9300
Update to release v0.27.0 Resolves: rhvz#2388453, rhbz#2384137, rhbz#2384154 Upstream new features and fixes
Exiv2 0.28.6 + patch to fix silent abi breakage Exiv2 v0.28.6 (Fixes two low severity CVEs)
Update to 139.0.7258.154 CVE-2025-9478: Use after free in ANGLE
CVE-2025-8067 Out-Of-Bounds Read in UDisks Daemon
CVE-2025-8010: Type Confusion in V8 CVE-2025-8011: Type Confusion in V8 CVE-2025-8576: Use after free in Extensions CVE-2025-8578: Use after free in Cast CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
Update to release v0.27.0 Resolves: rhvz#2388453, rhbz#2384137, rhbz#2384154 Upstream new features and fixes
Remove prebuild libffts.a library
Update to 139.0.7258.154 CVE-2025-9478: Use after free in ANGLE
Update to latest upstream (142.0.1) Updated to new upstream release (142.0)
Updated to 139.0.7258.138 CVE-2025-9132: Out of bounds write in V8
Rebase to new version resolves CVE-2025-31492
Update to upstream version 0.2.8 Update idna dependency to a version not affected by CVE-2024-12224
fix CVE-2025-9165: memory leak in tiffcmp (rhbz#2389608)
fix CVE-2025-8534: null pointer dereference in tiff2ps (rhbz#2386494) fix CVE-2024-13978: null pointer dereference in tiff2pdf (rhbz#2386201)
Updated to 139.0.7258.138 CVE-2025-9132: Out of bounds write in V8
Python 3.13.7 is the seventh maintenance release of 3.13. 3.13.7 is an expedited release to fix a significant issue with the 3.13.6 release: gh-137583: Regression in ssl module between 3.13.5 and 3.13.6: reading from a TLS-encrypted connection blocks