Alerts This Week
Warning Icon 1 717
Alerts This Week
Warning Icon 1 717

Fedora 42 Domoticz Important XSS Security Flaw Advisory 2026-627f2db2b7

fedora
Calendar Grey April 4, 2026
Dist Fedora Esm H88
Stay updated on Fedora 42 Domoticz critical XSS fix with security advisory 2026-627f2db2b7 addressing risks.
Too many changes to list

Summary

Domoticz is a Home Automation System that lets you monitor and configure various

devices like: Lights, Switches, various sensors/meters like Temperature, Rain,

Wind, UV, Electra, Gas, Water and much more. Notifications/Alerts can be sent to

any mobile device

Update Information:

Too many changes to list. See: https://github.com/domoticz/domoticz/blob/2026.1/History.txt This also fixes a security vulnerability.

Topics%20covered

Topics Covered

security advisory fedora update important arbitrary execution web interface

Change Log

* Wed Mar 25 2026 Michael Cronenworth - 2026.1-1 - New stable release * Sun Mar 22 2026 Bjrn Esser - 2025.2-6 - Rebuild (jsoncpp) * Fri Feb 27 2026 Tom Callaway - 2025.2-5 - rebuild for lua 5.5 * Fri Jan 16 2026 Fedora Release Engineering - 2025.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jan 16 2026 Fedora Release Engineering - 2025.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Wed Jan 14 2026 Michael Cronenworth - 2025.2-2 - Rebuilt for Boost 1.90 * Thu Jan 8 2026 Michael Cronenworth - 2025.2-1 - New stable release * Fri Sep 19 2025 Python Maint - 2025.1-4 - Rebuilt for Python 3.14.0rc3 bytecode * Fri Aug 15 2025 Python Maint - 2025.1-3 - Rebuilt for Python 3.14.0rc2 bytecode * Wed Jul 23 2025 Fedora Release Engineering - 2025.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild

References


[ 1 ] Bug #2451138 - domoticz-2026.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2451138 [ 2 ] Bug #2451506 - CVE-2026-1001 domoticz: Domoticz: Arbitrary script execution via stored cross-site scripting in web interface [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2451506 [ 3 ] Bug #2451508 - CVE-2026-1001 domoticz: Domoticz: Arbitrary script execution via stored cross-site scripting in web interface [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2451508

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-627f2db2b7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: domoticz
Product: Fedora 42
Version: 2026.1
Release: 1.fc42
URL: http://www.domoticz.com
Summary: Open source Home Automation System

Topics%20covered

Topics Covered

security advisory fedora update important arbitrary execution web interface

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here