Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Ubuntu 24 PlantUML High Risk Code Execution Threat 2026-1234 Alert

fedora
Calendar Grey February 9, 2026
Dist Fedora Esm H88
Arbitrary script execution vulnerability in PlantUML for Fedora 43 requires immediate attention. Update now!
Update to version 1.2026.1

Summary

PlantUML is a program allowing to draw UML diagrams, using a simple

and human readable text description. It is extremely useful for code

documenting, sketching project architecture during team conversations

and so on.

PlantUML supports the following diagram types

- sequence diagram

- use case diagram

- class diagram

- activity diagram

- component diagram

- state diagram

Update Information:

Update to version 1.2026.1

Topics%20covered

Topics Covered

security advisory fedora critical cross site scripting arbitrary execution PlantUML

Change Log

* Wed Jan 28 2026 blinxen - 1:1.2026.1-1 - Update to verison 1.2026.1 (rhbz#2428317) * Sat Jan 17 2026 Fedora Release Engineering - 1:1.2025.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Sat Nov 8 2025 blinxen - 1:1.2025.10-1 - Update to version 1.2025.10

References


[ 1 ] Bug #2430307 - CVE-2026-0858 plantuml: PlantUML: Arbitrary script execution via Stored Cross-Site Scripting in GraphViz diagrams [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2430307 [ 2 ] Bug #2430308 - CVE-2026-0858 plantuml: PlantUML: Arbitrary script execution via Stored Cross-Site Scripting in GraphViz diagrams [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2430308 [ 3 ] Bug #2430309 - CVE-2026-0858 plantuml: PlantUML: Arbitrary script execution via Stored Cross-Site Scripting in GraphViz diagrams [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2430309 [ 4 ] Bug #2430310 - CVE-2026-0858 plantuml: PlantUML: Arbitrary script execution via Stored Cross-Site Scripting in GraphViz diagrams [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2430310

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e25e1b1d0f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: plantuml
Product: Fedora 43
Version: 1.2026.1
Release: 1.fc43
URL: http://plantuml.com/
Summary: Program to generate UML diagram from a text description

Topics%20covered

Topics Covered

security advisory fedora critical cross site scripting arbitrary execution PlantUML

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here