Find the information you need for your favorite open source distribution .
Changes: 6.83 2026-05-12 11:41:48Z - LWP::UserAgent now strips Authorization and Proxy-Authorization headers on cross-origin redirects (a different scheme, host, or port) to prevent credential leakage to the redirect target. Same-origin redirects retain
Automatic update for cockpit-362-1.fc43. Changelog for cockpit * Wed May 20 2026 Packit - 362-1 - Bug fixes and translation updates - Fix arbitrary code execution via specially crafted logs page link
0.094 - fix to prevent invalid characters in all headers, and prevent header smuggling (CVE-2026-7010)
Update to xwayland 24.1.12, security fixes for ZDI-CAN-30136, ZDI-CAN-30159, ZDI-CAN-30160, ZDI-CAN-30161, ZDI-CAN-30163, ZDI-CAN-30164, ZDI-CAN-30165, ZDI-CAN-30168
Version 1.4.5 This release contains vulnerability fixes for the following security advisories: GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion via extra.pie- installed-binary metadata in UninstallUsingUnlink GHSA-pm6p-666q-hvj5 - Sudo-elevated root code execution via TOCTOU between self-
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
