fix CVE-2024-56737, CVE-2025-56737, CVE-2025-1864 Fix CVE-2025-1744 and CVE-2025-1864
Comment
Posts Tagged Fedora Linux Distribution – Security Advisories
2748 results.
Tigervnc 1.15.0 update.
Rebase to 2.7.0
ix for CVE-2025-26699: Potential denial-of-service vulnerability in django.utils.text.wrap()
ix for CVE-2025-26699: Potential denial-of-service vulnerability in django.utils.text.wrap()
Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat_420xx devices amdgpu: DMCUB updates for various ASICs
patchlevel 1202 Security fix for CVE-2025-29768
patchlevel 1202 Security fix for CVE-2025-29768
Latest maintenance release from 7.1 branch. Changelog: https://github.com/FFmpeg/FFmpeg/blob/n7.1.1/Changelog . Contains backported fix for CVE-2025-22921.
Update to 134.0.6998.88 High CVE-2025-1920: Type Confusion in V8 High CVE-2025-2135: Type Confusion in V8 Medium CVE-2025-2136: Use after free in Inspector Medium CVE-2025-2137: Out of bounds read in V8
deadlock potential with VT-d and legacy PCI device pass-through [XSA-467, CVE-2025-1713]
Changes with Apache Traffic Server 9.2.9 #12071 – Fix chunked pipelined requests #12075 – Fix send 100 Continue optimization for GET #12077 – Fix intercept plugin ignoring ACL #12079 – ACL combination tests for 9.2.x
Update to 128.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/ https://www.thunderbird.net/en-US/thunderbird/128.8.0esr/releasenotes/
Fixes for xorg-x11-server CVEs.
Unbundle libxml.
Vyper ver. 0.4.1 Another one small fix Fix for a few known issues
Update to 128.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/ https://www.thunderbird.net/en-US/thunderbird/128.8.0esr/releasenotes/
Version 3.1.6 Released 2025-03-05 The |attr filter does not bypass the environment’s attribute lookup, allowing the sandbox to apply its checks.
Update to tree-sitter 0.25.2 and emacs 30.1.
Update to tree-sitter 0.25.2 and emacs 30.1.
Update to tree-sitter 0.25.2 and emacs 30.1.
Unbundle libxml2.
Update to 134.0.6998.35 * CVE-2025-1914: Out of bounds read in V8 * CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools * CVE-2025-1916: Use after free in Profiles
Updated to latest upstream (136.0)
Refresh patches Add -std=gnu17 to CFLAGS to fix the build 042-man2html-CVE-2021-40647.patch Add more patches from Debian
Refresh patches Add -std=gnu17 to CFLAGS to fix the build 042-man2html-CVE-2021-40647.patch Add more patches from Debian
The newest upstream commit Security fix for CVE-2025-27423
Updated to latest upstream (136.0)
This is an update fixing possible remote SQL injection.
This is an update fixing possible remote SQL injection.