Updated perl to version 5.40.3 https://metacpan.org/release/SHAY/perl-5.40.3/view/pod/perldelta.pod
Comment
Posts Tagged Fedora Linux Distribution – Security Advisories
2744 results.
Updated perl to version 5.40.3 https://metacpan.org/release/SHAY/perl-5.40.3/view/pod/perldelta.pod
Updated perl to version 5.40.3 https://metacpan.org/release/SHAY/perl-5.40.3/view/pod/perldelta.pod
New release of Incus. Release information: https://github.com/lxc/incus/releases/tag/v6.15.0
Updated perl to version 5.40.3 https://metacpan.org/release/SHAY/perl-5.40.3/view/pod/perldelta.pod
update to xen-4.19.3 includes patches for x86: Incorrect stubs exception handling for flags recovery [XSA-470, CVE-2025-27465] x86: Transitive Scheduler Attacks [XSA-471, CVE-2024-36350,
New upstream version (140.0.2)
Apply fixes for CVE-2025-8262 and CVE-2025-7783.
Update to 138.0.7204.183 * CVE-2025-8292: Use after free in Media Stream
This update fixes CVE-2025-7345 and CVE-2025-6199.
This update, to the current upstream release version, includes a fix to source random numbers using the Crypt::URandom module rather than trying to read /dev/urandom and falling back to Perl’s insecure rand() function if /dev/urandom is not usable (CVE-2025-2814).
Update to 1.23.1 (rhbz#2380450)
Apply proposed fix for CVE-2205-7424.
Apply proposed fix for CVE-2205-7424.
Update to 138.0.7204.183 * CVE-2025-8292: Use after free in Media Stream
This update fixes CVE-2025-7345 and CVE-2025-6199.
reposurgeon: update to 5.3 version
This update fixes these CVEs: CVE-2025-32364 CVE-2025-32365 CVE-2024-56378
Backports patch to fix non-CVE 2025-8224
This update fixes these CVEs: CVE-2025-4948 CVE-2025-32908 CVE-2025-32907 CVE-2025-4969
Update to 138.0.7204.168 CVE-2025-8010: Type Confusion in V8 CVE-2025-8011: Type Confusion in V8
fix CVE-2025-8176: use after free in tiffmedian (rhbz#2383821) fix CVE-2025-8177: buffer oveflow in thumbnail setrow when processing malformed TIFF (rhbz#2383827)
Backport fixes for CVE-2024-6174 and CVE-2024-11584 cloud-init included the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. An unprivelege user could trigger hotplug-hook commands (CVE-2024-11584) When a non-x86 platform is detected, cloud-init granted root access to a
Backport fixes for CVE-2024-6174 and CVE-2024-11584 cloud-init included the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. An unprivelege user could trigger hotplug-hook commands (CVE-2024-11584) When a non-x86 platform is detected, cloud-init granted root access to a
Update to 138.0.7204.168 CVE-2025-8010: Type Confusion in V8 CVE-2025-8011: Type Confusion in V8
This update fixes CVE-2025-8058, a low-impact security vulnerability in the regcomp function.
Update to 20250602 with fixes for CVE-2025-48964
Backport fixes for CVE-2025-7545 and CVE-2025-7546.
Backport fixes for CVE-2025-7545 and CVE-2025-7546.
This update fixes CVE-2025-8058, a low-impact security vulnerability in the regcomp function. It also includes a fix for the iconv; it no longer creates executable files.