Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Fedora 44 os-autoinst Crucial Fix for Arbitrary Code Execution Issue

fedora
Calendar Grey July 3, 2026
Dist Fedora Esm H88
Update for Fedora 44 improves os-autoinst to resolve critical testing issues and security flaws. Get details in this advisory.
This update includes new upstream snapshots of openQA and os-autoinst, with the usual mix of fixes and improvements

Summary

The OS-autoinst project aims at providing a means to run fully

automated tests. Especially to run tests of basic and low-level

operating system components such as bootloader, kernel, installer and

upgrade, which can not easily and safely be tested with other

automated testing frameworks. However, it can just as well be used to

test applications on top of a newly installed OS.

Update Information:

This update includes new upstream snapshots of openQA and os-autoinst, with the usual mix of fixes and improvements. See upstream changelogs for details. For leptonica, this update removes an incorrect workaround for a GCC compilation issue, since GCC is now fixed. This should resolve incomplete processing of files on aarch64. Without this fix, os-autoinst's test suite fails.

Change Log

* Mon Jun 1 2026 Adam Williamson - 5^20260601git6ee8da2-1 - Update snapshot again, backport PR #2952 to fix serial console bug * Fri May 29 2026 Adam Williamson - 5^20260521git11296ca-1 - Update to recent snapshot, re-sync with upstream spec * Thu May 21 2026 Adam Williamson - 5^20260123git72cabd0-8 - Add a missing 'diff from SUSE' note * Wed Mar 11 2026 Adam Williamson - 5^20260123git72cabd0-7 - Drop shfmt from -devel dependencies (it was retired)

References


[ 1 ] Bug #2435305 - tesseract tests fail on Rawhide on aarch64 due to leptonica issue https://bugzilla.redhat.com/show_bug.cgi?id=2435305 [ 2 ] Bug #2454041 - CVE-2026-4800 openqa: lodash: Arbitrary code execution via untrusted input in template imports [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454041

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-a72f110dcd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: os-autoinst
Product: Fedora 44
Version: 5^20260601git6ee8da2
Release: 1.fc44
Summary: OS-level test automation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here