Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Fedora 42 uv Important Python Update Fixes Issues 2026-8d8aee6aaf

fedora
Calendar Grey May 18, 2026
Dist Fedora Esm H88
This advisory details the Fedora 42 uv update fixing significant Python-based security issues with new releases.
Update uv and python-uv-build to 0.11.11

Summary

An extremely fast Python package and project manager, written in Rust.

Highlights:

\u2022 A single tool to replace pip, pip-tools, pipx, poetry, pyenv, twine,

virtualenv, and more.

\u2022 10-100x faster than pip.

\u2022 Provides comprehensive project management, with a universal lockfile.

\u2022 Runs scripts, with support for inline dependency metadata.

\u2022 Installs and manages Python versions.

\u2022 Runs and installs tools published as Python packages.

\u2022 Includes a pip-compatible interface for a performance boost with a familiar

CLI.

\u2022 Supports Cargo-style workspaces for scalable projects.

\u2022 Disk-space efficient, with a global cache for dependency deduplication.

Update Information:

Update uv and python-uv-build to 0.11.11. Update the astral-tokio-tar Rust crate to 0.6.1, fixing security advisories GHSA-xx64-wwv2-hcqq and GHSA- fp55-jw48-c537.

Change Log

* Fri May 8 2026 Benjamin A. Beasley - 0.11.11-1 - Update to 0.11.11 (close RHBZ#2466908) * Wed May 6 2026 Benjamin A. Beasley - 0.11.10-1 - Update to 0.11.10 (close RHBZ#2466908) * Tue May 5 2026 Benjamin A. Beasley - 0.11.9-1 - Update to 0.11.9 (close RHBZ#2466654) * Thu Apr 16 2026 Benjamin A. Beasley - 0.11.7-1 - Update to 0.11.7 (close RHBZ#2458860)

References


[ 1 ] Bug #2466653 - python-uv-build-0.11.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=2466653 [ 2 ] Bug #2466654 - uv-0.11.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=2466654

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8d8aee6aaf' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: uv
Product: Fedora 42
Version: 0.11.11
Release: 1.fc42
Summary: An extremely fast Python package installer and resolver, written in Rust

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here