Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 6 articles for you...
89
security advisoryfedoramemoryFedora 44 Micropython 1.28.0 Critical Memory Issue Fix 2026-52a9a687f0
Update to 1.28.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-52a9a687f0 2026-04-25 01:21:36.172756+00:00 -------------------------------------------------------------------------------- Name : micropython Product : Fedora 44 Version : 1.28.0 Release : 1.fc44 URL : http://micropython.org/ Summary : Implementation of Python 3 with very low memory footprint Description : Implementation of Python 3 with very low memory footprint -------------------------------------------------------------------------------- Update Information: Update to 1.28.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 6 2026 Lumr Balhar - 1.28.0-1 - Update to 1.28.0 - Security fix for CVE-2026-1998 - Update mbedtls submodule to 3.6.6 - mbedtls security fixes for CVE-2026-25834, CVE-2026-34871, CVE-2026-25833 - CVE-2025-52496, CVE-2025-52497, CVE-2025-49087, CVE-2025-54764, CVE-2025-59438 Resolves: rhbz#2455368, rhbz#2376688, rhbz#2376701, rhbz#2382261, rhbz#2405245, rhbz#2405374, rhbz#2437327, rhbz#2454032, rhbz#2454086, rhbz#2454213 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2376688 - CVE-2025-52496 micropython: Mbed TLS AESNI Race Condition Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2376688 [ 2 ] Bug #2376701 - CVE-2025-52497 micropython: Mbed TLS PEM Parsing Buffer Underflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2376701 [ 3 ] Bug #2382261 - CVE-2025-49087 micropython: Mbed TLS PKCS#7 Timing Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2382261 [ 4 ] Bug #2405245 - CVE-2025-54764 micropython: Mbedtls timing attacks in RSA operations [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2405245 [ 5 ] Bug #2405374 - CVE-2025-59438 micropython: MbedTLS Padding oracle through timing of cipher errorreporting [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2405374 [ 6 ] Bug #2437327 - CVE-2026-1998 micropython: micropython runtime.c mp_import_all memory corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2437327 [ 7 ] Bug #2454032 - CVE-2026-25833 micropython: buffer underflow in x509_inet_pton_ipv6() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454032 [ 8 ] Bug #2454086 - CVE-2026-34871 micropython: entropy on Linux can fall back to /dev/urandom [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454086 [ 9 ] Bug #2454213 - CVE-2026-25834 micropython: Mbed TLS: Algorithm downgrade vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454213 [ 10 ] Bug #2455368 - micropython-1.28.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2455368 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-52a9a687f0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update for Fedora 44 micropython to 1.28.0 resolves critical security issues related to memory corruption and buffer underflow.. Fedora Update, Memory Security, MicroPython Update, Python Low Memory, Security Issues. . Severity: Critical. LinuxSecurity.com Team
Apr 25, 2026
•Critical
Fedora
89
security advisoryfedoraupdateFedora 44 kstatusnotifieritem Advisory FEDORA-2026-fe3d8d4767
Frameworks 6.25.0 + KDE Plasma 6.6.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-fe3d8d4767 2026-04-16 23:40:54.273526+00:00 -------------------------------------------------------------------------------- Name : kf6-kstatusnotifieritem Product : Fedora 44 Version : 6.25.0 Release : 1.fc44 URL : https://invent.kde.org/frameworks/kstatusnotifieritem Summary : Implementation of Status Notifier Items Description : Implementation of Status Notifier Items. -------------------------------------------------------------------------------- Update Information: Frameworks 6.25.0 + KDE Plasma 6.6.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 9 2026 Steve Cossette - 6.25.0-1 - 6.25.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2455469 - Configuring WifI network via Network pane appears to not work https://bugzilla.redhat.com/show_bug.cgi?id=2455469 [ 2 ] Bug #2457573 - FE: KDE Frameworks 6.25.0 + Plasma 6.6.4 https://bugzilla.redhat.com/show_bug.cgi?id=2457573 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-fe3d8d4767' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 16, 2026
Fedora
89
security advisoryfedorahighFedora 42: CEF High WebGPU Out of Bounds Write CVE-2025-12725 Advisory
Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-58193e3850 2025-11-29 17:02:16.261252+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 42 Version : 142.0.14^chromium142.0.7444.162 Release : 1.fc42 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox Medium CVE-2025-12729: Inappropriate implementation in Omnibox High CVE-2025-12428: Type Confusion in V8 High CVE-2025-12429: Inappropriate implementation in V8 High CVE-2025-12430: Object lifecycle issue in Media High CVE-2025-12431: Inappropriate implementation in Extensions High CVE-2025-12432: Race in V8 High CVE-2025-12433: Inappropriate implementation in V8 High CVE-2025-12036: Inappropriate implementation in V8 Medium CVE-2025-12434: Race in Storage Medium CVE-2025-12435: Incorrect security UI in Omnibox Medium CVE-2025-12436: Policy bypass in Extensions Medium CVE-2025-12437: Use after free in PageInfo Medium CVE-2025-12438: Use after free in Ozone Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption Low CVE-2025-12440: Inappropriate implementation in Autofill Medium CVE-2025-12441: Out of bounds read in V8 MediumCVE-2025-12443: Out of bounds read in WebXR Low CVE-2025-12444: Incorrect security UI in Fullscreen UI Low CVE-2025-12445: Policy bypass in Extensions Low CVE-2025-12446: Incorrect security UI in SplitView Low CVE-2025-12447: Incorrect security UI in Omnibox -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 18 2025 Asahi Lina - 142.0.14^chromium142.0.7444.162-1 - Update to cef-142.0.14+gceaf578 (rhbz#2413981) * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-4 - Fix FTBFS caused by rust-1.88 on EL9 * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-3 - Fix FTBFS - epel9 has new rust-1.88, dropp chromium-134-rust- libadler2.patch * Fri Nov 14 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-1 - Update to 142.0.7444.162 - * High CVE-2025-13042: Inappropriate implementation in V8 * Tue Nov 11 2025 Dominik 'Rathann' Mierzejewski - 142.0.10^chromium142.0.7444.134-2 - Rebuilt for FFmpeg 8 * Tue Nov 11 2025 Asahi Lina - 142.0.10^chromium142.0.7444.134-1 - Update to cef-142.0.10+g29548e2 (rhbz#2413981) * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.134-1 - Update to 142.0.7444.134 (rhbz#2413621) - * High CVE-2025-12725: Out of bounds write in WebGPU - * High CVE-2025-12726: Inappropriate implementation in Views - * High CVE-2025-12727: Inappropriate implementation in V8 - * Medium CVE-2025-12728: Inappropriate implementation in Omnibox - * Medium CVE-2025-12729: Inappropriate implementation in Omnibox * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.59-5 - Add CVEs in changelog - * High CVE-2025-12428: Type Confusion in V8 - * High CVE-2025-12429: Inappropriate implementation in V8 - * High CVE-2025-12430: Object lifecycle issue in Media - * High CVE-2025-12431: Inappropriate implementation in Extensions - * High CVE-2025-12432: Race in V8 - * High CVE-2025-12433: Inappropriate implementation in V8 - * High CVE-2025-12036: Inappropriate implementation in V8 - * MediumCVE-2025-12434: Race in Storage - * Medium CVE-2025-12435: Incorrect security UI in Omnibox - * Medium CVE-2025-12436: Policy bypass in Extensions - * Medium CVE-2025-12437: Use after free in PageInfo - * Medium CVE-2025-12438: Use after free in Ozone - * Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption - * Low CVE-2025-12440: Inappropriate implementation in Autofill - * Medium CVE-2025-12441: Out of bounds read in V8 - * Medium CVE-2025-12443: Out of bounds read in WebXR - * Low CVE-2025-12444: Incorrect security UI in Fullscreen UI - * Low CVE-2025-12445: Policy bypass in Extensions - * Low CVE-2025-12446: Incorrect security UI in SplitView - * Low CVE-2025-12447: Incorrect security UI in Omnibox * Tue Nov 4 2025 Dominik 'Rathann' Mierzejewski - 142.0.6^chromium142.0.7444.59-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-58193e3850' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 29, 2025
•Critical
Fedora
89
security advisoryfedorahighFedora 43: cef High Out Of Bounds Issues DoS 2025-604e02ca72
Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-604e02ca72 2025-11-29 16:43:28.332542+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 43 Version : 142.0.14^chromium142.0.7444.162 Release : 1.fc43 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox Medium CVE-2025-12729: Inappropriate implementation in Omnibox High CVE-2025-12428: Type Confusion in V8 High CVE-2025-12429: Inappropriate implementation in V8 High CVE-2025-12430: Object lifecycle issue in Media High CVE-2025-12431: Inappropriate implementation in Extensions High CVE-2025-12432: Race in V8 High CVE-2025-12433: Inappropriate implementation in V8 High CVE-2025-12036: Inappropriate implementation in V8 Medium CVE-2025-12434: Race in Storage Medium CVE-2025-12435: Incorrect security UI in Omnibox Medium CVE-2025-12436: Policy bypass in Extensions Medium CVE-2025-12437: Use after free in PageInfo Medium CVE-2025-12438: Use after free in Ozone Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption Low CVE-2025-12440: Inappropriate implementation in Autofill Medium CVE-2025-12441: Out of bounds read in V8 MediumCVE-2025-12443: Out of bounds read in WebXR Low CVE-2025-12444: Incorrect security UI in Fullscreen UI Low CVE-2025-12445: Policy bypass in Extensions Low CVE-2025-12446: Incorrect security UI in SplitView Low CVE-2025-12447: Incorrect security UI in Omnibox -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 18 2025 Asahi Lina - 142.0.14^chromium142.0.7444.162-1 - Update to cef-142.0.14+gceaf578 (rhbz#2413981) * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-4 - Fix FTBFS caused by rust-1.88 on EL9 * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-3 - Fix FTBFS - epel9 has new rust-1.88, dropp chromium-134-rust- libadler2.patch * Fri Nov 14 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-1 - Update to 142.0.7444.162 - * High CVE-2025-13042: Inappropriate implementation in V8 * Tue Nov 11 2025 Dominik 'Rathann' Mierzejewski - 142.0.10^chromium142.0.7444.134-2 - Rebuilt for FFmpeg 8 * Tue Nov 11 2025 Asahi Lina - 142.0.10^chromium142.0.7444.134-1 - Update to cef-142.0.10+g29548e2 (rhbz#2413981) * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.134-1 - Update to 142.0.7444.134 (rhbz#2413621) - * High CVE-2025-12725: Out of bounds write in WebGPU - * High CVE-2025-12726: Inappropriate implementation in Views - * High CVE-2025-12727: Inappropriate implementation in V8 - * Medium CVE-2025-12728: Inappropriate implementation in Omnibox - * Medium CVE-2025-12729: Inappropriate implementation in Omnibox * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.59-5 - Add CVEs in changelog - * High CVE-2025-12428: Type Confusion in V8 - * High CVE-2025-12429: Inappropriate implementation in V8 - * High CVE-2025-12430: Object lifecycle issue in Media - * High CVE-2025-12431: Inappropriate implementation in Extensions - * High CVE-2025-12432: Race in V8 - * High CVE-2025-12433: Inappropriate implementation in V8 - * High CVE-2025-12036: Inappropriate implementation in V8 - * MediumCVE-2025-12434: Race in Storage - * Medium CVE-2025-12435: Incorrect security UI in Omnibox - * Medium CVE-2025-12436: Policy bypass in Extensions - * Medium CVE-2025-12437: Use after free in PageInfo - * Medium CVE-2025-12438: Use after free in Ozone - * Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption - * Low CVE-2025-12440: Inappropriate implementation in Autofill - * Medium CVE-2025-12441: Out of bounds read in V8 - * Medium CVE-2025-12443: Out of bounds read in WebXR - * Low CVE-2025-12444: Incorrect security UI in Fullscreen UI - * Low CVE-2025-12445: Policy bypass in Extensions - * Low CVE-2025-12446: Incorrect security UI in SplitView - * Low CVE-2025-12447: Incorrect security UI in Omnibox * Tue Nov 4 2025 Dominik 'Rathann' Mierzejewski - 142.0.6^chromium142.0.7444.59-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-604e02ca72' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 29, 2025
•Critical
Fedora
89
security advisoryfedorahighFedora 43: chrome Significant Vulnerability Alert CVE-2025-13042
Update to 142.0.7444.162 * High CVE-2025-13042: Inappropriate implementation in V8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-36898b8750 2025-11-16 01:19:34.137404+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 43 Version : 142.0.7444.162 Release : 1.fc43 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.162 * High CVE-2025-13042: Inappropriate implementation in V8 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 12 2025 Than Ngo - 142.0.7444.162-1 - Update to 142.0.7444.162 * High CVE-2025-13042: Inappropriate implementation in V8 * Tue Nov 11 2025 Dominik Mierzejewski - 142.0.7444.134-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2414356 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2414356 [ 2 ] Bug #2414357 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2414357 [ 3 ] Bug #2414359 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2414359 [ 4 ] Bug #2414362 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2414362 [ 5 ] Bug #2414364 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2414364 [ 6 ] Bug #2414366 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2414366 [ 7 ] Bug #2414368 - CVE-2025-12910 chromium: Inappropriate implementation in Passkeys [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2414368 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-36898b8750' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 16, 2025
•Critical
Fedora
89
security advisoryfedoraimportantFedora 42: rust-reqsign-http-send-reqwest Important Upgrade 2025-e60a4ba4d7
uv / python-uv-build 0.9.7 https://github.com/astral-sh/uv/releases/tag/0.9.7 0.9.6 This release contains an upgrade to Astral's fork of async_zip, which addresses. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e60a4ba4d7 2025-11-15 01:30:31.747715+00:00 -------------------------------------------------------------------------------- Name : rust-reqsign-http-send-reqwest Product : Fedora 42 Version : 2.0.1 Release : 1.fc42 URL : https://crates.io/crates/reqsign-http-send-reqwest Summary : Reqwest-based HTTP client implementation for reqsign Description : Reqwest-based HTTP client implementation for reqsign. -------------------------------------------------------------------------------- Update Information: uv / python-uv-build 0.9.7 https://github.com/astral-sh/uv/releases/tag/0.9.7 0.9.6 This release contains an upgrade to Astral's fork of async_zip, which addresses potential sources of ZIP parsing differentials between uv and other Python packaging tooling. See GHSA-pqhf-p39g-3x64 for additional details. https://github.com/astral-sh/uv/releases/tag/0.9.6 ruff 0.14.3 https://github.com/astral-sh/ruff/releases/tag/0.14.3 Update rust-get-size2/rust-get-size-derive2 to 0.7.1 (implement GetSize for RefCell). Update rust-reqsign to 0.18.1 and rust-reqsign-* to 2.0.1. Update rust-regex to 1.12.2 and rust-regex-automata to 0.4.13. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 5 2025 Benjamin A. Beasley - 2.0.1-1 - Update to version 2.0.1; Fixes RHBZ#2411982 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2403244 - rust-regex-1.12.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2403244 [ 2 ] Bug #2403245 - rust-regex-automata-0.4.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=2403245 [ 3 ] Bug #2406419 -rust-get-size2-0.7.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2406419 [ 4 ] Bug #2406420 - rust-get-size-derive2-0.7.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2406420 [ 5 ] Bug #2411978 - rust-reqsign-core-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411978 [ 6 ] Bug #2411979 - rust-reqsign-command-execute-tokio-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411979 [ 7 ] Bug #2411980 - rust-reqsign-aws-v4-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411980 [ 8 ] Bug #2411981 - rust-reqsign-0.18.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411981 [ 9 ] Bug #2411982 - rust-reqsign-http-send-reqwest-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411982 [ 10 ] Bug #2411983 - rust-reqsign-file-read-tokio-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2411983 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e60a4ba4d7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 15, 2025
•Important
Fedora
89
security advisoryfedoraupdateFedora 41: chromium High CVEs CVE-2025-12725 2025-671d7aa1ba
Update to 142.0.7444.134 * High CVE-2025-12725: Out of bounds write in WebGPU * High CVE-2025-12726: Inappropriate implementation in Views * High CVE-2025-12727: Inappropriate implementation in V8 * Medium CVE-2025-12728: Inappropriate implementation in Omnibox. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-671d7aa1ba 2025-11-12 02:22:17.217135+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 142.0.7444.134 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.134 * High CVE-2025-12725: Out of bounds write in WebGPU * High CVE-2025-12726: Inappropriate implementation in Views * High CVE-2025-12727: Inappropriate implementation in V8 * Medium CVE-2025-12728: Inappropriate implementation in Omnibox * Medium CVE-2025-12729: Inappropriate implementation in Omnibox -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 6 2025 Than Ngo - 142.0.7444.134-1 - Update to 142.0.7444.134 * High CVE-2025-12725: Out of bounds write in WebGPU * High CVE-2025-12726: Inappropriate implementation in Views * High CVE-2025-12727: Inappropriate implementation in V8 * Medium CVE-2025-12728: Inappropriate implementation in Omnibox * Medium CVE-2025-12729: Inappropriate implementation in Omnibox * Wed Nov 5 2025 Dominik Mierzejewski - 142.0.7444.59-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2025-671d7aa1ba' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 12, 2025
•Critical
Fedora
89
security advisoryfedoraupdateFedora 41: Chromium 141.0.7390.122 High CVE-2025-12036 Implementation Issue
Update to 141.0.7390.122 High CVE-2025-12036 chromium: Inappropriate implementation in V8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-6728ac0fca 2025-10-29 01:08:25.691460+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 141.0.7390.122 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 141.0.7390.122 High CVE-2025-12036 chromium: Inappropriate implementation in V8 -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 22 2025 Than Ngo - 141.0.7390.122-1 - Update to 141.0.7390.122 * High CVE-2025-12036 chromium: Inappropriate implementation in V8 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6728ac0fca' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 29, 2025
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!