Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Fedora 44 perl-CSS-Minifier-XS Important Memory Leak Fix CVE-2026-13593

fedora
Calendar Grey July 8, 2026
Dist Fedora Esm H88
This update for Fedora 44 addresses a critical memory leak in perl-CSS-Minifier-XS, enhancing system security.
This package contains the Perl module CSS::Minifier::XS

Summary

'CSS::Minifier::XS' is a CSS "minifier". It's designed to remove

unnecessary white-space and comments from CSS files, while also

*not* breaking the CSS. 'CSS::Minifier::XS' is similar in function

to 'CSS::Minifier', but is substantially faster as it's written

in XS and not just pure Perl.

Update Information:

This package contains the Perl module CSS::Minifier::XS. Versions of the module before 0.14 have a memory leak when the entire document is minified away (CVE-2026-13593). This update brings version 0.15 which fixes this issue.

Change Log

* Tue Jun 30 2026 Emmanuel Seyman - 0.15-1 - Update to 0.15

References


[ 1 ] Bug #2494733 - CVE-2026-13593 perl-CSS-Minifier-XS: CSS::Minifier::XS: Memory leak via crafted input leading to Denial of Service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494733

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-9f14575d85' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: perl-CSS-Minifier-XS
Product: Fedora 44
Version: 0.15
Release: 1.fc44
Summary: XS based CSS minifier

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.