Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
89
security advisorysecurity issuefedoraFedora 43 bpfman Critical Update CVE-2026-31812 Arbitrary Permissions Issue
Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-d62d7fe77e 2026-04-02 01:05:52.796857+00:00 -------------------------------------------------------------------------------- Name : bpfman Product : Fedora 43 Version : 0.5.4 Release : 5.fc43 URL : https://bpfman.io Summary : EBPF Program Manager Description : bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs. -------------------------------------------------------------------------------- Update Information: Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2026 Daniel Mellado - 0.5.4-5 - Fix CVE-2026-31812: Bump tar-rs to .5.45 - Closes rhbz#2449672 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2449672 - CVE-2026-33056 bpfman: tar-rs: Arbitrary directory permission modification via crafted tar archive [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2449672 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-d62d7fe77e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 02, 2026
•Critical
Fedora
89
security advisoryfedoraDoSFedora 43 BPFMAN Major Denial of Service Fix for CVE-2026-31812
Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 - Closes rhbz#2446359. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-2fef29d32a 2026-03-20 01:01:53.697472+00:00 -------------------------------------------------------------------------------- Name : bpfman Product : Fedora 43 Version : 0.5.4 Release : 4.fc43 URL : https://bpfman.io Summary : EBPF Program Manager Description : bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs. -------------------------------------------------------------------------------- Update Information: Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 - Closes rhbz#2446359 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 11 2026 Daniel Mellado - 0.5.4-4 - Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 - Closes rhbz#2446359 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2446359 - CVE-2026-31812 bpfman: quinn-proto: Denial of Service via crafted QUIC Initial packet [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2446359 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2fef29d32a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 20, 2026
•Important
Fedora
89
security advisoryfedorause-after-freeFedora 42: bpfman Security Update CVE-2025-0977 Use-After-Free
This update fixes CVE-2025-0977 (RUSTSEC-2025-0004), a use-after-free vulnerability in the Rust openssl crate's ssl::select_next_proto function. The openssl crate has been updated from version 0.10.67 to 0.10.70 in the vendored dependencies.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-0753bddd6c 2025-11-09 03:17:35.195090+00:00 -------------------------------------------------------------------------------- Name : bpfman Product : Fedora 42 Version : 0.5.4 Release : 3.fc42 URL : https://bpfman.io Summary : EBPF Program Manager Description : bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs. -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2025-0977 (RUSTSEC-2025-0004), a use-after-free vulnerability in the Rust openssl crate's ssl::select_next_proto function. The openssl crate has been updated from version 0.10.67 to 0.10.70 in the vendored dependencies. -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 31 2025 Daniel Mellado - 0.5.4-3 - Fix CVE-2025-0977: Update openssl to 0.10.70 - closes rhbz#2344554 * Wed Jul 23 2025 Fedora Release Engineering - 0.5.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Mon Jun 23 2025 Daniel Mellado - 0.5.4-1 - Add patch for Cargo.lock - closes rhbz2370581 * Sat Jun 7 2025 Daniel Mellado - 0.5.6-1 - Update to version 0.5.6 * Thu Jan 16 2025 Fedora Release Engineering - 0.5.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Dec 18 2024 Daniel Mellado - 0.5.4-4 - Correct sources vendor file * Wed Dec 18 2024 Daniel Mellado - 0.5.4-3 - Remove forbidden RTLO characters in vendor/idna-5.0tests -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344554 - bpfman: openssl: CVE-2025-0977 / RUSTSEC-2025-0004: ssl::select_next_proto use after free https://bugzilla.redhat.com/show_bug.cgi?id=2344554 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-0753bddd6c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 09, 2025
•Important
Fedora
89
security advisoryfedorause-after-freeFedora 43: bpfman CVE-2025-0977 Use-After-Free Advisory Announcement
This update fixes CVE-2025-0977 (RUSTSEC-2025-0004), a use-after-free vulnerability in the Rust openssl crate's ssl::select_next_proto function. The openssl crate has been updated from version 0.10.67 to 0.10.70 in the vendored dependencies.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e67231423f 2025-11-09 03:05:33.669278+00:00 -------------------------------------------------------------------------------- Name : bpfman Product : Fedora 43 Version : 0.5.4 Release : 3.fc43 URL : https://bpfman.io Summary : EBPF Program Manager Description : bpfman operates as an eBPF manager, focusing on simplifying the deployment and administration of eBPF programs. -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2025-0977 (RUSTSEC-2025-0004), a use-after-free vulnerability in the Rust openssl crate's ssl::select_next_proto function. The openssl crate has been updated from version 0.10.67 to 0.10.70 in the vendored dependencies. -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 31 2025 Daniel Mellado - 0.5.4-3 - Fix CVE-2025-0977: Update openssl to 0.10.70 - closes rhbz#2344554 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344554 - bpfman: openssl: CVE-2025-0977 / RUSTSEC-2025-0004: ssl::select_next_proto use after free https://bugzilla.redhat.com/show_bug.cgi?id=2344554 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e67231423f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPGkey. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 09, 2025
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!