Fedora 42 uv Update 0.10.2 Denial of Service Advisory 2026-086a367966

fedora

February 22, 2026

Update uv and python-uv-build to 0.10.2

Summary

An extremely fast Python package and project manager, written in Rust.

Highlights:

\u2022 A single tool to replace pip, pip-tools, pipx, poetry, pyenv, twine,

virtualenv, and more.

\u2022 10-100x faster than pip.

\u2022 Provides comprehensive project management, with a universal lockfile.

\u2022 Runs scripts, with support for inline dependency metadata.

\u2022 Installs and manages Python versions.

\u2022 Runs and installs tools published as Python packages.

\u2022 Includes a pip-compatible interface for a performance boost with a familiar

CLI.

\u2022 Supports Cargo-style workspaces for scalable projects.

\u2022 Disk-space efficient, with a global cache for dependency deduplication.

Update Information:

Update uv and python-uv-build to 0.10.2. There are some minor breaking changes in uv; most users should not have to change anything. See https://github.com/astral-sh/uv/blob/0.10.2/CHANGELOG.md for details. There are no breaking changes to python-uv-build.

Topics Covered

security advisory denial of service fedora important uv python-uv-build

Change Log

* Tue Feb 10 2026 Benjamin A. Beasley - 0.10.2-1 - Update to 0.10.2 * Tue Feb 10 2026 Benjamin A. Beasley - 0.10.1-1 - Update to 0.10.1 (close RHBZ#2437188)

References

[ 1 ] Bug #2438083 - CVE-2026-25727 python-uv-build: time affected by a stack exhaustion denial of service attack [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2438083

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-086a367966' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

important

Lowest

Low

Medium

High

Critical

Name: uv

Product: Fedora 42

Version: 0.10.2

Release: 1.fc42

URL: https://github.com/astral-sh/uv

Summary: An extremely fast Python package installer and resolver, written in Rust

Topics Covered

security advisory denial of service fedora important uv python-uv-build

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 42 uv Update 0.10.2 Denial of Service Advisory 2026-086a367966

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 42 uv Update 0.10.2 Denial of Service Advisory 2026-086a367966

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!