Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 0 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE 2026 1844-1 Mesa Moderate WebGPU Memory Access CVE-2026-40393

An update that solves one vulnerability can now be installed.. # Security update for Mesa Announcement ID: SUSE-SU-2026:1844-1 Release Date: 2026-05-13T15:25:16Z Rating: moderate References: * bsc#1261998 Cross-References: * CVE-2026-40393 CVSS scores: * CVE-2026-40393 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2026-40393 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40393 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for Mesa fixes the following issue: * CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#1261998). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1844=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * Mesa-18.3.2-14.12.1 * Mesa-libGL1-debuginfo-32bit-18.3.2-14.12.1 * libxatracker2-debuginfo-1.0.0-14.12.1 * Mesa-dri-devel-18.3.2-14.12.1 * Mesa-libd3d-devel-18.3.2-14.12.1 * Mesa-libEGL1-debuginfo-18.3.2-14.12.1 * Mesa-32bit-18.3.2-14.12.1 * Mesa-dri-debuginfo-32bit-18.3.2-14.12.1 * Mesa-libEGL-devel-18.3.2-14.12.1 * libgbm1-18.3.2-14.12.1 * libgbm1-32bit-18.3.2-14.12.1 * Mesa-libglapi0-debuginfo-18.3.2-14.12.1 * Mesa-libEGL1-debuginfo-32bit-18.3.2-14.12.1 * Mesa-libglapi0-32bit-18.3.2-14.12.1 * Mesa-dri-debuginfo-18.3.2-14.12.1 *Mesa-libGLESv3-devel-18.3.2-14.12.1 * Mesa-libEGL1-18.3.2-14.12.1 * Mesa-libGLESv2-2-debuginfo-18.3.2-14.12.1 * Mesa-dri-18.3.2-14.12.1 * Mesa-libglapi-devel-18.3.2-14.12.1 * libxatracker-devel-1.0.0-14.12.1 * Mesa-libGL1-32bit-18.3.2-14.12.1 * libgbm1-debuginfo-18.3.2-14.12.1 * Mesa-libGL-devel-18.3.2-14.12.1 * Mesa-libglapi0-18.3.2-14.12.1 * Mesa-devel-18.3.2-14.12.1 * Mesa-dri-32bit-18.3.2-14.12.1 * libgbm-devel-18.3.2-14.12.1 * Mesa-libGL1-debuginfo-18.3.2-14.12.1 * Mesa-drivers-debugsource-18.3.2-14.12.1 * Mesa-KHR-devel-18.3.2-14.12.1 * Mesa-libGLESv1_CM-devel-18.3.2-14.12.1 * Mesa-libVulkan-devel-18.3.2-14.12.1 * libgbm1-debuginfo-32bit-18.3.2-14.12.1 * Mesa-libGLESv2-devel-18.3.2-14.12.1 * Mesa-libEGL1-32bit-18.3.2-14.12.1 * Mesa-libGLESv2-2-18.3.2-14.12.1 * libOSMesa-devel-18.3.2-14.12.1 * libxatracker2-1.0.0-14.12.1 * Mesa-libGL1-18.3.2-14.12.1 * Mesa-libglapi0-debuginfo-32bit-18.3.2-14.12.1 * Mesa-debugsource-18.3.2-14.12.1 ## References: * https://www.suse.com/security/cve/CVE-2026-40393.html * https://bugzilla.suse.com/show_bug.cgi?id=1261998 . Mesa patch resolves a critical out-of-bounds access issue on SUSE affecting security integrity through multiple vulnerabilities.. Mesa security update, SUSE Linux Enterprise Server patching, WebGPU vulnerability. . LinuxSecurity.com Team

Calendar 2 May 13, 2026 SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatememory access

openSUSE Leap 15.5 Mesa Moderate Memory Access Vulnerability CVE-2026-40393

An update that solves one vulnerability can now be installed.. # Security update for Mesa Announcement ID: SUSE-SU-2026:1835-1 Release Date: 2026-05-12T16:18:06Z Rating: moderate References: * bsc#1261998 Cross-References: * CVE-2026-40393 CVSS scores: * CVE-2026-40393 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2026-40393 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40393 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for Mesa fixes the following issue: * CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#1261998). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-1835=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-1835=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1835=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * Mesa-drivers-debugsource-22.3.5-150500.77.8.1 * libOSMesa-devel-22.3.5-150500.77.8.1 * Mesa-debugsource-22.3.5-150500.77.8.1 * Mesa-dri-debuginfo-22.3.5-150500.77.8.1 * Mesa-libEGL1-22.3.5-150500.77.8.1 * Mesa-libEGL-devel-22.3.5-150500.77.8.1 * libOSMesa8-debuginfo-22.3.5-150500.77.8.1 * libOSMesa8-22.3.5-150500.77.8.1 * libgbm1-22.3.5-150500.77.8.1 *Mesa-dri-22.3.5-150500.77.8.1 * libgbm-devel-22.3.5-150500.77.8.1 * Mesa-libGL-devel-22.3.5-150500.77.8.1 * Mesa-devel-22.3.5-150500.77.8.1 * Mesa-dri-devel-22.3.5-150500.77.8.1 * libgbm1-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGLESv3-devel-22.3.5-150500.77.8.1 * Mesa-KHR-devel-22.3.5-150500.77.8.1 * Mesa-libGLESv1_CM-devel-22.3.5-150500.77.8.1 * Mesa-libGL1-22.3.5-150500.77.8.1 * Mesa-libglapi-devel-22.3.5-150500.77.8.1 * Mesa-libglapi0-22.3.5-150500.77.8.1 * Mesa-libGLESv2-devel-22.3.5-150500.77.8.1 * Mesa-libglapi0-debuginfo-22.3.5-150500.77.8.1 * Mesa-libEGL1-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGL1-debuginfo-22.3.5-150500.77.8.1 * Mesa-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (aarch64 ppc64le x86_64 i586) * libxatracker-devel-1.0.0-150500.77.8.1 * Mesa-gallium-22.3.5-150500.77.8.1 * Mesa-libOpenCL-22.3.5-150500.77.8.1 * libxatracker2-1.0.0-150500.77.8.1 * libvdpau_nouveau-22.3.5-150500.77.8.1 * libvdpau_nouveau-debuginfo-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-debuginfo-22.3.5-150500.77.8.1 * libvdpau_radeonsi-22.3.5-150500.77.8.1 * Mesa-gallium-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r600-debuginfo-22.3.5-150500.77.8.1 * Mesa-libOpenCL-debuginfo-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r300-debuginfo-22.3.5-150500.77.8.1 * libxatracker2-debuginfo-1.0.0-150500.77.8.1 * libvdpau_r600-22.3.5-150500.77.8.1 * libvdpau_radeonsi-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-22.3.5-150500.77.8.1 * Mesa-libva-22.3.5-150500.77.8.1 * libvdpau_r300-22.3.5-150500.77.8.1 * Mesa-libva-debuginfo-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (aarch64 x86_64 i586) * Mesa-libd3d-22.3.5-150500.77.8.1 * Mesa-libd3d-devel-22.3.5-150500.77.8.1 * libvulkan_radeon-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-22.3.5-150500.77.8.1 *Mesa-vulkan-overlay-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-debuginfo-22.3.5-150500.77.8.1 * libvulkan_radeon-22.3.5-150500.77.8.1 * Mesa-vulkan-overlay-22.3.5-150500.77.8.1 * libvulkan_lvp-22.3.5-150500.77.8.1 * libvulkan_lvp-debuginfo-22.3.5-150500.77.8.1 * Mesa-libd3d-debuginfo-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (x86_64) * Mesa-libglapi-devel-32bit-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-32bit-22.3.5-150500.77.8.1 * Mesa-libEGL1-32bit-22.3.5-150500.77.8.1 * Mesa-gallium-32bit-22.3.5-150500.77.8.1 * libvulkan_intel-32bit-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-32bit-debuginfo-22.3.5-150500.77.8.1 * libvulkan_radeon-32bit-debuginfo-22.3.5-150500.77.8.1 * libOSMesa8-32bit-22.3.5-150500.77.8.1 * Mesa-libd3d-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-32bit-22.3.5-150500.77.8.1 * Mesa-gallium-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGL-devel-32bit-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-32bit-22.3.5-150500.77.8.1 * libgbm1-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libd3d-32bit-22.3.5-150500.77.8.1 * Mesa-libglapi0-32bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r300-32bit-22.3.5-150500.77.8.1 * libgbm1-32bit-22.3.5-150500.77.8.1 * Mesa-libd3d-devel-32bit-22.3.5-150500.77.8.1 * libvdpau_radeonsi-32bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_nouveau-32bit-debuginfo-22.3.5-150500.77.8.1 * libvulkan_radeon-32bit-22.3.5-150500.77.8.1 * Mesa-libGL1-32bit-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-32bit-22.3.5-150500.77.8.1 * libOSMesa-devel-32bit-22.3.5-150500.77.8.1 * Mesa-32bit-22.3.5-150500.77.8.1 * Mesa-dri-32bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_radeonsi-32bit-22.3.5-150500.77.8.1 * libvdpau_r300-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libEGL1-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGLESv2-devel-32bit-22.3.5-150500.77.8.1 *libgbm-devel-32bit-22.3.5-150500.77.8.1 * libvulkan_intel-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGL1-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-overlay-32bit-22.3.5-150500.77.8.1 * Mesa-libGLESv1_CM-devel-32bit-22.3.5-150500.77.8.1 * Mesa-libglapi0-32bit-22.3.5-150500.77.8.1 * libvdpau_r600-32bit-22.3.5-150500.77.8.1 * libvdpau_nouveau-32bit-22.3.5-150500.77.8.1 * Mesa-libEGL-devel-32bit-22.3.5-150500.77.8.1 * libvdpau_r600-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-32bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-overlay-32bit-debuginfo-22.3.5-150500.77.8.1 * libOSMesa8-32bit-debuginfo-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (x86_64 i586) * libvulkan_intel-debuginfo-22.3.5-150500.77.8.1 * libvulkan_intel-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (aarch64_ilp32) * Mesa-libglapi0-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-vc4-64bit-debuginfo-22.3.5-150500.77.8.1 * libgbm-devel-64bit-22.3.5-150500.77.8.1 * Mesa-libd3d-64bit-22.3.5-150500.77.8.1 * libgbm1-64bit-22.3.5-150500.77.8.1 * Mesa-vulkan-overlay-64bit-22.3.5-150500.77.8.1 * libvdpau_nouveau-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r600-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_radeonsi-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_radeonsi-64bit-22.3.5-150500.77.8.1 * Mesa-dri-64bit-22.3.5-150500.77.8.1 * Mesa-libd3d-devel-64bit-22.3.5-150500.77.8.1 * Mesa-libEGL-devel-64bit-22.3.5-150500.77.8.1 * libvulkan_radeon-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-vulkan-overlay-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_nouveau-64bit-22.3.5-150500.77.8.1 * Mesa-libGL1-64bit-22.3.5-150500.77.8.1 * Mesa-libGLESv2-devel-64bit-22.3.5-150500.77.8.1 * libOSMesa8-64bit-22.3.5-150500.77.8.1 * Mesa-64bit-22.3.5-150500.77.8.1 *Mesa-dri-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r300-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libd3d-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-gallium-64bit-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r600-64bit-22.3.5-150500.77.8.1 * Mesa-libglapi-devel-64bit-22.3.5-150500.77.8.1 * Mesa-gallium-64bit-22.3.5-150500.77.8.1 * libOSMesa8-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libglapi0-64bit-22.3.5-150500.77.8.1 * Mesa-dri-vc4-64bit-22.3.5-150500.77.8.1 * Mesa-libEGL1-64bit-debuginfo-22.3.5-150500.77.8.1 * libvulkan_radeon-64bit-22.3.5-150500.77.8.1 * libgbm1-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGL1-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGLESv1_CM-devel-64bit-22.3.5-150500.77.8.1 * Mesa-dri-nouveau-64bit-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-64bit-debuginfo-22.3.5-150500.77.8.1 * Mesa-libEGL1-64bit-22.3.5-150500.77.8.1 * libOSMesa-devel-64bit-22.3.5-150500.77.8.1 * Mesa-libGL-devel-64bit-22.3.5-150500.77.8.1 * libvdpau_r300-64bit-22.3.5-150500.77.8.1 * Mesa-vulkan-device-select-64bit-22.3.5-150500.77.8.1 * libvdpau_virtio_gpu-64bit-22.3.5-150500.77.8.1 * openSUSE Leap 15.5 (aarch64) * libvulkan_freedreno-debuginfo-22.3.5-150500.77.8.1 * Mesa-dri-vc4-22.3.5-150500.77.8.1 * libvulkan_broadcom-debuginfo-22.3.5-150500.77.8.1 * libvulkan_freedreno-22.3.5-150500.77.8.1 * libvulkan_broadcom-22.3.5-150500.77.8.1 * Mesa-dri-vc4-debuginfo-22.3.5-150500.77.8.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * Mesa-drivers-debugsource-22.3.5-150500.77.8.1 * Mesa-libglapi0-22.3.5-150500.77.8.1 * libgbm1-debuginfo-22.3.5-150500.77.8.1 * Mesa-libglapi0-debuginfo-22.3.5-150500.77.8.1 * Mesa-debugsource-22.3.5-150500.77.8.1 * Mesa-dri-debuginfo-22.3.5-150500.77.8.1 * libgbm1-22.3.5-150500.77.8.1 * Mesa-dri-22.3.5-150500.77.8.1 * Mesa-libEGL1-22.3.5-150500.77.8.1 * Mesa-libGL1-22.3.5-150500.77.8.1 *Mesa-libEGL1-debuginfo-22.3.5-150500.77.8.1 * Mesa-libGL1-debuginfo-22.3.5-150500.77.8.1 * Mesa-22.3.5-150500.77.8.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le x86_64) * Mesa-gallium-debuginfo-22.3.5-150500.77.8.1 * Mesa-gallium-22.3.5-150500.77.8.1 * Basesystem Module 15-SP7 (aarch64 ppc64le x86_64) * Mesa-drivers-debugsource-22.3.5-150500.77.8.1 * libvdpau_r300-debuginfo-22.3.5-150500.77.8.1 * libvdpau_r300-22.3.5-150500.77.8.1 ## References: * https://www.suse.com/security/cve/CVE-2026-40393.html * https://bugzilla.suse.com/show_bug.cgi?id=1261998 . Mesa security update for openSUSE addresses a moderate risk memory access issue with version CVE-2026-40393.. openSUSE security update, Mesa memory access, CVE-2026-40393, Linux security patch, security advisory. . LinuxSecurity.com Team

Calendar 2 May 13, 2026 OpenSUSE
Banner 1 1028x280 1708121660 1771599717
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatememory access

openSUSE 15.4 Mesa Moderate Memory Access Issue SUSE-SU-2026-1839-1

An update that solves one vulnerability can now be installed.. # Security update for Mesa Announcement ID: SUSE-SU-2026:1839-1 Release Date: 2026-05-13T09:13:57Z Rating: moderate References: * bsc#1261998 Cross-References: * CVE-2026-40393 CVSS scores: * CVE-2026-40393 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2026-40393 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40393 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for Mesa fixes the following issue: * CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#1261998). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1839=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1839=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1839=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1839=1 * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2026-1839=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypperin -t patch SUSE-SLE-Micro-5.3-2026-1839=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-1839=1 ## Package List: * openSUSE Leap 15.4 (aarch64 x86_64 i586) * libvulkan_radeon-21.2.4-150400.68.18.1 * Mesa-libd3d-21.2.4-150400.68.18.1 * Mesa-vulkan-device-select-21.2.4-150400.68.18.1 * Mesa-vulkan-overlay-21.2.4-150400.68.18.1 * libvulkan_radeon-debuginfo-21.2.4-150400.68.18.1 * libvulkan_lvp-21.2.4-150400.68.18.1 * libvulkan_lvp-debuginfo-21.2.4-150400.68.18.1 * Mesa-libd3d-devel-21.2.4-150400.68.18.1 * Mesa-libd3d-debuginfo-21.2.4-150400.68.18.1 * Mesa-vulkan-device-select-debuginfo-21.2.4-150400.68.18.1 * Mesa-vulkan-overlay-debuginfo-21.2.4-150400.68.18.1 * Mesa-libVulkan-devel-21.2.4-150400.68.18.1 * openSUSE Leap 15.4 (aarch64 ppc64le x86_64 i586) * libvdpau_nouveau-debuginfo-21.2.4-150400.68.18.1 * libvdpau_r300-debuginfo-21.2.4-150400.68.18.1 * Mesa-libva-debuginfo-21.2.4-150400.68.18.1 * libXvMC_nouveau-21.2.4-150400.68.18.1 * Mesa-libOpenCL-21.2.4-150400.68.18.1 * libvdpau_radeonsi-21.2.4-150400.68.18.1 * Mesa-libva-21.2.4-150400.68.18.1 * libXvMC_r600-21.2.4-150400.68.18.1 * Mesa-libOpenCL-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-21.2.4-150400.68.18.1 * libxatracker2-1.0.0-150400.68.18.1 * libvdpau_radeonsi-debuginfo-21.2.4-150400.68.18.1 * libXvMC_nouveau-debuginfo-21.2.4-150400.68.18.1 * libxatracker2-debuginfo-1.0.0-150400.68.18.1 * libvdpau_r300-21.2.4-150400.68.18.1 * libvdpau_r600-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-debuginfo-21.2.4-150400.68.18.1 * libvdpau_nouveau-21.2.4-150400.68.18.1 * libXvMC_r600-debuginfo-21.2.4-150400.68.18.1 * Mesa-gallium-debuginfo-21.2.4-150400.68.18.1 * Mesa-gallium-21.2.4-150400.68.18.1 * libvdpau_r600-21.2.4-150400.68.18.1 * libxatracker-devel-1.0.0-150400.68.18.1 * openSUSE Leap 15.4 (x86_64) * Mesa-vulkan-overlay-32bit-21.2.4-150400.68.18.1 *libOSMesa-devel-32bit-21.2.4-150400.68.18.1 * libvdpau_r600-32bit-21.2.4-150400.68.18.1 * Mesa-gallium-32bit-21.2.4-150400.68.18.1 * Mesa-libGLESv2-devel-32bit-21.2.4-150400.68.18.1 * Mesa-libGL1-32bit-debuginfo-21.2.4-150400.68.18.1 * libvulkan_intel-32bit-21.2.4-150400.68.18.1 * libXvMC_r600-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libd3d-32bit-21.2.4-150400.68.18.1 * libvdpau_r300-32bit-21.2.4-150400.68.18.1 * Mesa-dri-32bit-debuginfo-21.2.4-150400.68.18.1 * libvulkan_radeon-32bit-21.2.4-150400.68.18.1 * Mesa-gallium-32bit-debuginfo-21.2.4-150400.68.18.1 * libvdpau_r600-32bit-debuginfo-21.2.4-150400.68.18.1 * libXvMC_nouveau-32bit-debuginfo-21.2.4-150400.68.18.1 * libvdpau_r300-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-vulkan-device-select-32bit-debuginfo-21.2.4-150400.68.18.1 * libgbm1-32bit-21.2.4-150400.68.18.1 * Mesa-libd3d-devel-32bit-21.2.4-150400.68.18.1 * libvdpau_nouveau-32bit-21.2.4-150400.68.18.1 * Mesa-libEGL1-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libglapi0-32bit-21.2.4-150400.68.18.1 * libOSMesa8-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libglapi0-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL1-32bit-21.2.4-150400.68.18.1 * libXvMC_nouveau-32bit-21.2.4-150400.68.18.1 * libvdpau_radeonsi-32bit-21.2.4-150400.68.18.1 * libOSMesa8-32bit-21.2.4-150400.68.18.1 * libXvMC_r600-32bit-21.2.4-150400.68.18.1 * Mesa-vulkan-device-select-32bit-21.2.4-150400.68.18.1 * libvulkan_intel-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libglapi-devel-32bit-21.2.4-150400.68.18.1 * Mesa-dri-32bit-21.2.4-150400.68.18.1 * Mesa-vulkan-overlay-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGLESv1_CM-devel-32bit-21.2.4-150400.68.18.1 * libgbm1-32bit-debuginfo-21.2.4-150400.68.18.1 * libgbm-devel-32bit-21.2.4-150400.68.18.1 * Mesa-libEGL1-32bit-21.2.4-150400.68.18.1 * Mesa-32bit-21.2.4-150400.68.18.1 *libvdpau_radeonsi-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libEGL-devel-32bit-21.2.4-150400.68.18.1 * Mesa-libd3d-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL-devel-32bit-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-32bit-debuginfo-21.2.4-150400.68.18.1 * libvulkan_radeon-32bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-32bit-21.2.4-150400.68.18.1 * libvdpau_nouveau-32bit-debuginfo-21.2.4-150400.68.18.1 * openSUSE Leap 15.4 (x86_64 i586) * libvulkan_intel-debuginfo-21.2.4-150400.68.18.1 * libvulkan_intel-21.2.4-150400.68.18.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * Mesa-libGLESv1_CM-devel-21.2.4-150400.68.18.1 * Mesa-libGL-devel-21.2.4-150400.68.18.1 * Mesa-libglapi0-debuginfo-21.2.4-150400.68.18.1 * libOSMesa8-21.2.4-150400.68.18.1 * Mesa-dri-21.2.4-150400.68.18.1 * Mesa-debugsource-21.2.4-150400.68.18.1 * Mesa-dri-debuginfo-21.2.4-150400.68.18.1 * Mesa-21.2.4-150400.68.18.1 * Mesa-libGLESv2-devel-21.2.4-150400.68.18.1 * Mesa-devel-21.2.4-150400.68.18.1 * libOSMesa-devel-21.2.4-150400.68.18.1 * Mesa-libEGL1-debuginfo-21.2.4-150400.68.18.1 * Mesa-libglapi0-21.2.4-150400.68.18.1 * Mesa-libglapi-devel-21.2.4-150400.68.18.1 * Mesa-libEGL1-21.2.4-150400.68.18.1 * Mesa-dri-devel-21.2.4-150400.68.18.1 * libOSMesa8-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL1-debuginfo-21.2.4-150400.68.18.1 * libgbm1-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGLESv3-devel-21.2.4-150400.68.18.1 * Mesa-libEGL-devel-21.2.4-150400.68.18.1 * libgbm-devel-21.2.4-150400.68.18.1 * Mesa-libGL1-21.2.4-150400.68.18.1 * libgbm1-21.2.4-150400.68.18.1 * Mesa-drivers-debugsource-21.2.4-150400.68.18.1 * Mesa-KHR-devel-21.2.4-150400.68.18.1 * openSUSE Leap 15.4 (aarch64_ilp32) * Mesa-libd3d-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-vc4-64bit-21.2.4-150400.68.18.1 * Mesa-vulkan-device-select-64bit-21.2.4-150400.68.18.1 *Mesa-vulkan-device-select-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL1-64bit-21.2.4-150400.68.18.1 * Mesa-libglapi-devel-64bit-21.2.4-150400.68.18.1 * libOSMesa8-64bit-21.2.4-150400.68.18.1 * libvdpau_nouveau-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-gallium-64bit-debuginfo-21.2.4-150400.68.18.1 * libXvMC_r600-64bit-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-vc4-64bit-debuginfo-21.2.4-150400.68.18.1 * libgbm1-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libEGL1-64bit-21.2.4-150400.68.18.1 * Mesa-dri-nouveau-64bit-21.2.4-150400.68.18.1 * libvdpau_r600-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL-devel-64bit-21.2.4-150400.68.18.1 * libvdpau_r300-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libGL1-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-libd3d-devel-64bit-21.2.4-150400.68.18.1 * libvdpau_nouveau-64bit-21.2.4-150400.68.18.1 * Mesa-libGLESv2-devel-64bit-21.2.4-150400.68.18.1 * libvdpau_r600-64bit-21.2.4-150400.68.18.1 * libvdpau_radeonsi-64bit-21.2.4-150400.68.18.1 * Mesa-gallium-64bit-21.2.4-150400.68.18.1 * Mesa-64bit-21.2.4-150400.68.18.1 * Mesa-libEGL-devel-64bit-21.2.4-150400.68.18.1 * Mesa-libGLESv1_CM-devel-64bit-21.2.4-150400.68.18.1 * Mesa-libglapi0-64bit-21.2.4-150400.68.18.1 * libgbm-devel-64bit-21.2.4-150400.68.18.1 * libXvMC_r600-64bit-debuginfo-21.2.4-150400.68.18.1 * Mesa-dri-64bit-debuginfo-21.2.4-150400.68.18.1 * libOSMesa-devel-64bit-21.2.4-150400.68.18.1 * Mesa-vulkan-overlay-64bit-21.2.4-150400.68.18.1 * Mesa-dri-64bit-21.2.4-150400.68.18.1 * Mesa-libglapi0-64bit-debuginfo-21.2.4-150400.68.18.1 * libvdpau_r300-64bit-21.2.4-150400.68.18.1 * libvdpau_radeonsi-64bit-debuginfo-21.2.4-150400.68.18.1 * libvulkan_radeon-64bit-debuginfo-21.2.4-150400.68.18.1 * libOSMesa8-64bit-debuginfo-21.2.4-150400.68.18.1 * libXvMC_nouveau-64bit-debuginfo-21.2.4-150400.68.18.1 *Mesa-vulkan-overlay-64bit-debuginfo-21.2.4-150400.68.18.1 * libvulkan_radeon-64bit-21.2.4-150400.68.18.1 * libgbm1-64bit-21.2.4-150400.68.18.1 * libXvMC_nouveau-64bit-21.2.4-150400.68.18.1 * Mesa-libd3d-64bit-21.2.4-150400.68.18.1 * Mesa-libEGL1-64bit-debuginfo-21.2.4-150400.68.18.1 * openSUSE Leap 15.4 (aarch64) * Mesa-dri-vc4-21.2.4-150400.68.18.1 * Mesa-dri-vc4-debuginfo-21.2.4-150400.68.18.1 * libvulkan_freedreno-21.2.4-150400.68.18.1 * libvulkan_broadcom-21.2.4-150400.68.18.1 * libvulkan_broadcom-debuginfo-21.2.4-150400.68.18.1 * libvulkan_freedreno-debuginfo-21.2.4-150400.68.18.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libgbm1-21.2.4-150400.68.18.1 * libgbm1-debuginfo-21.2.4-150400.68.18.1 * Mesa-debugsource-21.2.4-150400.68.18.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libgbm1-21.2.4-150400.68.18.1 * libgbm1-debuginfo-21.2.4-150400.68.18.1 * Mesa-debugsource-21.2.4-150400.68.18.1 * Basesystem Module 15-SP7 (x86_64) * Mesa-libVulkan-devel-21.2.4-150400.68.18.1 * Mesa-drivers-debugsource-21.2.4-150400.68.18.1 * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * libXvMC_nouveau-debuginfo-21.2.4-150400.68.18.1 * libXvMC_nouveau-21.2.4-150400.68.18.1 * Mesa-drivers-debugsource-21.2.4-150400.68.18.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libgbm1-21.2.4-150400.68.18.1 * libgbm1-debuginfo-21.2.4-150400.68.18.1 * Mesa-debugsource-21.2.4-150400.68.18.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libgbm1-21.2.4-150400.68.18.1 * libgbm1-debuginfo-21.2.4-150400.68.18.1 * Mesa-debugsource-21.2.4-150400.68.18.1 ## References: * https://www.suse.com/security/cve/CVE-2026-40393.html * https://bugzilla.suse.com/show_bug.cgi?id=1261998 . Update for Mesa addresses a moderate issue with out-of-bounds memory access in WebGPU, critical for secure operations.. Mesa security advisory,openSUSE update, memory access vulnerability. . LinuxSecurity.com Team

Calendar 2 May 13, 2026 OpenSUSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEimportant

SUSE Linux Enterprise 16.0 Mesa Moderate Memory Access Issue 2026-21564-1

An update that solves one vulnerability and has one fix can now be installed.. # Security update for Mesa Announcement ID: SUSE-SU-2026:21564-1 Release Date: 2026-05-06T10:15:45Z Rating: moderate References: * bsc#1261911 * bsc#1261998 Cross-References: * CVE-2026-40393 CVSS scores: * CVE-2026-40393 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2026-40393 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40393 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability and has one fix can now be installed. ## Description: This update for Mesa fixes the following issue: * CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#1261998). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-707=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-707=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * Mesa-dri-devel-24.3.3-160000.3.1 * Mesa-libRusticlOpenCL-debuginfo-24.3.3-160000.3.1 * Mesa-libGLESv3-devel-24.3.3-160000.3.1 * Mesa-dri-24.3.3-160000.3.1 * Mesa-libva-24.3.3-160000.3.1 * Mesa-libGL-devel-24.3.3-160000.3.1 * libvdpau_r600-24.3.3-160000.3.1 * Mesa-24.3.3-160000.3.1 * libOSMesa8-debuginfo-24.3.3-160000.3.1 * Mesa-devel-24.3.3-160000.3.1 * Mesa-dri-nouveau-24.3.3-160000.3.1 * Mesa-libglapi-devel-24.3.3-160000.3.1 * libvdpau_radeonsi-24.3.3-160000.3.1 * Mesa-libEGL-devel-24.3.3-160000.3.1 *Mesa-libOpenCL-24.3.3-160000.3.1 * Mesa-libEGL1-debuginfo-24.3.3-160000.3.1 * Mesa-KHR-devel-24.3.3-160000.3.1 * Mesa-libglapi0-24.3.3-160000.3.1 * Mesa-gallium-24.3.3-160000.3.1 * libgbm-devel-24.3.3-160000.3.1 * Mesa-libGL1-debuginfo-24.3.3-160000.3.1 * Mesa-dri-debuginfo-24.3.3-160000.3.1 * libvdpau_nouveau-24.3.3-160000.3.1 * Mesa-debugsource-24.3.3-160000.3.1 * Mesa-libGLESv1_CM-devel-24.3.3-160000.3.1 * Mesa-libGLESv2-devel-24.3.3-160000.3.1 * libxatracker2-1.0.0-160000.3.1 * libOSMesa8-24.3.3-160000.3.1 * Mesa-gallium-debuginfo-24.3.3-160000.3.1 * libxatracker-devel-1.0.0-160000.3.1 * libgbm1-debuginfo-24.3.3-160000.3.1 * libOSMesa-devel-24.3.3-160000.3.1 * Mesa-drivers-debugsource-24.3.3-160000.3.1 * Mesa-libRusticlOpenCL-24.3.3-160000.3.1 * libxatracker2-debuginfo-1.0.0-160000.3.1 * Mesa-libOpenCL-debuginfo-24.3.3-160000.3.1 * Mesa-libEGL1-24.3.3-160000.3.1 * libgbm1-24.3.3-160000.3.1 * libvdpau_virtio_gpu-24.3.3-160000.3.1 * Mesa-libglapi0-debuginfo-24.3.3-160000.3.1 * Mesa-libGL1-24.3.3-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * Mesa-vulkan-overlay-debuginfo-24.3.3-160000.3.1 * libvulkan_radeon-debuginfo-24.3.3-160000.3.1 * libvulkan_intel-24.3.3-160000.3.1 * libvulkan_lvp-24.3.3-160000.3.1 * libvulkan_lvp-debuginfo-24.3.3-160000.3.1 * Mesa-vulkan-overlay-24.3.3-160000.3.1 * libvulkan_radeon-24.3.3-160000.3.1 * Mesa-libd3d-24.3.3-160000.3.1 * Mesa-libd3d-debuginfo-24.3.3-160000.3.1 * Mesa-vulkan-device-select-debuginfo-24.3.3-160000.3.1 * Mesa-vulkan-device-select-24.3.3-160000.3.1 * Mesa-libd3d-devel-24.3.3-160000.3.1 * libvulkan_intel-debuginfo-24.3.3-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le x86_64) * Mesa-dri-devel-24.3.3-160000.3.1 * Mesa-libRusticlOpenCL-debuginfo-24.3.3-160000.3.1 * Mesa-libGLESv3-devel-24.3.3-160000.3.1 * Mesa-dri-24.3.3-160000.3.1 *Mesa-libva-24.3.3-160000.3.1 * Mesa-libGL-devel-24.3.3-160000.3.1 * libvdpau_r600-24.3.3-160000.3.1 * Mesa-24.3.3-160000.3.1 * libOSMesa8-debuginfo-24.3.3-160000.3.1 * Mesa-devel-24.3.3-160000.3.1 * Mesa-dri-nouveau-24.3.3-160000.3.1 * Mesa-libglapi-devel-24.3.3-160000.3.1 * libvdpau_radeonsi-24.3.3-160000.3.1 * Mesa-libEGL-devel-24.3.3-160000.3.1 * Mesa-libOpenCL-24.3.3-160000.3.1 * Mesa-libEGL1-debuginfo-24.3.3-160000.3.1 * Mesa-KHR-devel-24.3.3-160000.3.1 * Mesa-libglapi0-24.3.3-160000.3.1 * Mesa-gallium-24.3.3-160000.3.1 * libgbm-devel-24.3.3-160000.3.1 * Mesa-libGL1-debuginfo-24.3.3-160000.3.1 * Mesa-dri-debuginfo-24.3.3-160000.3.1 * libvdpau_nouveau-24.3.3-160000.3.1 * Mesa-debugsource-24.3.3-160000.3.1 * Mesa-libGLESv1_CM-devel-24.3.3-160000.3.1 * Mesa-libGLESv2-devel-24.3.3-160000.3.1 * libxatracker2-1.0.0-160000.3.1 * libOSMesa8-24.3.3-160000.3.1 * Mesa-gallium-debuginfo-24.3.3-160000.3.1 * libxatracker-devel-1.0.0-160000.3.1 * libgbm1-debuginfo-24.3.3-160000.3.1 * libOSMesa-devel-24.3.3-160000.3.1 * Mesa-drivers-debugsource-24.3.3-160000.3.1 * Mesa-libRusticlOpenCL-24.3.3-160000.3.1 * libxatracker2-debuginfo-1.0.0-160000.3.1 * Mesa-libOpenCL-debuginfo-24.3.3-160000.3.1 * Mesa-libEGL1-24.3.3-160000.3.1 * libgbm1-24.3.3-160000.3.1 * libvdpau_virtio_gpu-24.3.3-160000.3.1 * Mesa-libglapi0-debuginfo-24.3.3-160000.3.1 * Mesa-libGL1-24.3.3-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64) * libvulkan_freedreno-debuginfo-24.3.3-160000.3.1 * Mesa-dri-vc4-24.3.3-160000.3.1 * libvulkan_broadcom-debuginfo-24.3.3-160000.3.1 * libvulkan_freedreno-24.3.3-160000.3.1 * libvulkan_broadcom-24.3.3-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 x86_64) * Mesa-vulkan-overlay-debuginfo-24.3.3-160000.3.1 * libvulkan_radeon-debuginfo-24.3.3-160000.3.1 * libvulkan_lvp-24.3.3-160000.3.1 * Mesa-vulkan-overlay-24.3.3-160000.3.1 *libvulkan_radeon-24.3.3-160000.3.1 * Mesa-vulkan-device-select-debuginfo-24.3.3-160000.3.1 * Mesa-vulkan-device-select-24.3.3-160000.3.1 * libvulkan_lvp-debuginfo-24.3.3-160000.3.1 * SUSE Linux Enterprise Server 16.0 (x86_64) * libvulkan_intel-24.3.3-160000.3.1 * Mesa-libd3d-24.3.3-160000.3.1 * Mesa-libd3d-debuginfo-24.3.3-160000.3.1 * Mesa-libd3d-devel-24.3.3-160000.3.1 * libvulkan_intel-debuginfo-24.3.3-160000.3.1 * SUSE Linux Enterprise Server 16.0 (s390x) * Mesa-libGLESv2-devel-24.1.7-160000.3.1 * libgbm1-24.1.7-160000.3.1 * Mesa-libglapi0-debuginfo-24.1.7-160000.3.1 * Mesa-devel-24.1.7-160000.3.1 * Mesa-libGL-devel-24.1.7-160000.3.1 * Mesa-libEGL1-24.1.7-160000.3.1 * Mesa-libglapi0-24.1.7-160000.3.1 * libgbm-devel-24.1.7-160000.3.1 * Mesa-drivers-debugsource-24.1.7-160000.3.1 * Mesa-24.1.7-160000.3.1 * Mesa-libEGL1-debuginfo-24.1.7-160000.3.1 * Mesa-dri-debuginfo-24.1.7-160000.3.1 * libgbm1-debuginfo-24.1.7-160000.3.1 * Mesa-libGL1-24.1.7-160000.3.1 * libOSMesa8-24.1.7-160000.3.1 * Mesa-debugsource-24.1.7-160000.3.1 * Mesa-dri-24.1.7-160000.3.1 * Mesa-libglapi-devel-24.1.7-160000.3.1 * Mesa-KHR-devel-24.1.7-160000.3.1 * libOSMesa8-debuginfo-24.1.7-160000.3.1 * Mesa-libGL1-debuginfo-24.1.7-160000.3.1 * Mesa-libGLESv1_CM-devel-24.1.7-160000.3.1 * Mesa-libEGL-devel-24.1.7-160000.3.1 * Mesa-libGLESv3-devel-24.1.7-160000.3.1 * libOSMesa-devel-24.1.7-160000.3.1 * Mesa-dri-devel-24.1.7-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-40393.html * https://bugzilla.suse.com/show_bug.cgi?id=1261911 * https://bugzilla.suse.com/show_bug.cgi?id=1261998 . Update available for Mesa in SUSE Linux addressing important memory access issue. Install patch promptly for security.. SUSE, Mesa, Security Update, Memory Access, Important Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 11, 2026 Important SuSE
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraimportant

Fedora 43 CEF Important Update Heap Buffer Type Confusion 2026-0bced5158d

Update to cef-145.0.25 + chromium 145.0.7632.75 CVE-2026-1861: Heap buffer overflow in libvpx CVE-2026-1862: Type Confusion in V8 CVE-2026-2313: Use after free in CSS CVE-2026-2314: Heap buffer overflow in Codecs. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-0bced5158d 2026-03-02 00:40:42.980478+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 43 Version : 145.0.25^chromium145.0.7632.75 Release : 4.fc43 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to cef-145.0.25 + chromium 145.0.7632.75 CVE-2026-1861: Heap buffer overflow in libvpx CVE-2026-1862: Type Confusion in V8 CVE-2026-2313: Use after free in CSS CVE-2026-2314: Heap buffer overflow in Codecs CVE-2026-2315: Inappropriate implementation in WebGPU CVE-2026-2316: Insufficient policy enforcement in Frames CVE-2026-2317: Inappropriate implementation in Animation CVE-2026-2318: Inappropriate implementation in PictureInPicture CVE-2026-2319: Race in DevTools CVE-2026-2320: Inappropriate implementation in File input CVE-2026-2321: Use after free in Ozone CVE-2026-2322: Inappropriate implementation in File input CVE-2026-2323: Inappropriate implementation in Downloads CVE-2026-2441: Use after free in CSS -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 20 2026 Than Ngo - 145.0.25^chromium145.0.7632.75-1 - Update to 145.0.7632.75 - * CVE-2026-2441: Use after free in CSS - Fix FTFS on aarch64/ppc64le caused by missing include file (el9) - Enable rustc_nightly_capability * Fri Feb 20 2026 Than Ngo - 145.0.25^chromium145.0.7632.45-1 - Update to 145.0.7632.45 - *CVE-2026-2313: Use after free in CSS - * CVE-2026-2314: Heap buffer overflow in Codecs - * CVE-2026-2315: Inappropriate implementation in WebGPU - * CVE-2026-2316: Insufficient policy enforcement in Frames - * CVE-2026-2317: Inappropriate implementation in Animation - * CVE-2026-2318: Inappropriate implementation in PictureInPicture - * CVE-2026-2319: Race in DevTools - * CVE-2026-2320: Inappropriate implementation in File input - * CVE-2026-2321: Use after free in Ozone - * CVE-2026-2322: Inappropriate implementation in File input - * CVE-2026-2323: Inappropriate implementation in Downloads - Hoshino Lina: Update to cef-145.0.25+g265860d * Fri Feb 20 2026 Than Ngo - 144.0.11^chromium144.0.7559.132-1 - Update to 144.0.7559.132 - * CVE-2026-1861: Heap buffer overflow in libvpx - * CVE-2026-1862: Type Confusion in V8 - Add BR on esbuild - Disable devtool bundle - Update scripts for downloading the source -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-0bced5158d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, reportit: https://forge.fedoraproject.org/infra/tickets/issues/new . Critical updates for Fedora 43 CEF addressing multiple significant flaws, ensuring system integrity and performance.. Fedora 43,Cef,Heap Buffer Overflow,Type Confusion,Security Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 02, 2026 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorabuffer overflow

Fedora 43 Chromium Update 2026-443f9ace49 Critical Heap Overflow

Update to 145.0.7632.75 CVE-2026-2441: Use after free in CSS CVE-2026-2313: Use after free in CSS CVE-2026-2314: Heap buffer overflow in Codecs CVE-2026-2315: Inappropriate implementation in WebGPU. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-443f9ace49 2026-02-20 00:51:59.594194+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 43 Version : 145.0.7632.75 Release : 1.fc43 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 145.0.7632.75 CVE-2026-2441: Use after free in CSS CVE-2026-2313: Use after free in CSS CVE-2026-2314: Heap buffer overflow in Codecs CVE-2026-2315: Inappropriate implementation in WebGPU CVE-2026-2316: Insufficient policy enforcement in Frames CVE-2026-2317: Inappropriate implementation in Animation CVE-2026-2318: Inappropriate implementation in PictureInPicture CVE-2026-2319: Race in DevTools CVE-2026-2320: Inappropriate implementation in File input CVE-2026-2321: Use after free in Ozone CVE-2026-2322: Inappropriate implementation in File input CVE-2026-2323: Inappropriate implementation in Downloads -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 14 2026 Than Ngo - 145.0.7632.75-1 - Update to 145.0.7632.75 * CVE-2026-2441: Use after free in CSS * Thu Feb 12 2026 Than Ngo - 145.0.7632.45-1 - Update to 145.0.7632.45 * CVE-2026-2313: Use after free in CSS * CVE-2026-2314: Heap buffer overflow in Codecs * CVE-2026-2315: Inappropriate implementation in WebGPU * CVE-2026-2316: Insufficient policy enforcement in Frames * CVE-2026-2317: Inappropriateimplementation in Animation * CVE-2026-2318: Inappropriate implementation in PictureInPicture * CVE-2026-2319: Race in DevTools * CVE-2026-2320: Inappropriate implementation in File input * CVE-2026-2321: Use after free in Ozone * CVE-2026-2322: Inappropriate implementation in File input * CVE-2026-2323: Inappropriate implementation in Downloads -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-443f9ace49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Recent Chromium update for Fedora 43 addresses multiple critical issues, including buffer overflow and CSS usage.. Chromium Fedora security issues update CSS buffer overflow. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 20, 2026 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorahigh

Fedora 43 CEF High CVE-2025-14765 Critical Update for WebGPU Issues

Update to cef-143.0.10+g8aed01b + chromium-143.0.7499.146 (rhbz#2423482) High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of bounds read and write in V8 High CVE-2025-13630: Type Confusion in V8 High CVE-2025-13631: Inappropriate implementation in Google Updater. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-6e776254bf 2025-12-21 03:52:21.127349+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 43 Version : 143.0.10^chromium143.0.7499.146 Release : 1.fc43 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to cef-143.0.10+g8aed01b + chromium-143.0.7499.146 (rhbz#2423482) High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of bounds read and write in V8 High CVE-2025-13630: Type Confusion in V8 High CVE-2025-13631: Inappropriate implementation in Google Updater High CVE-2025-13632: Inappropriate implementation in DevTools High CVE-2025-13633: Use after free in Digital Credentials Medium CVE-2025-13634: Inappropriate implementation in Downloads Medium CVE-2025-13720: Bad cast in Loader Medium CVE-2025-13721: Race in v8 Low CVE-2025-13635: Inappropriate implementation in Downloads Low CVE-2025-13636: Inappropriate implementation in Split View Low CVE-2025-13637: Inappropriate implementation in Downloads Low CVE-2025-13638: Use after free in Media Stream Low CVE-2025-13639: Inappropriate implementation in WebRTC Low CVE-2025-13640: Inappropriate implementation in Passwords -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 18 2025 Than Ngo - 143.0.10^chromium143.0.7499.146-1 - Update to143.0.7499.146 [rhbz#2423482] - * High CVE-2025-14765: Use after free in WebGPU - * High CVE-2025-14766: Out of bounds read and write in V8 - Force dark mode when auto dark mode web content is on - Remove omnibox-next-Improve-cutout-mouse-handling-for-Wayla patch, as it's merged * Thu Dec 18 2025 Hoshino Lina - 143.0.10^chromium143.0.7499.109-7 - Fix accelerated paint regression * Sun Dec 14 2025 Hoshino Lina - 143.0.10^chromium143.0.7499.109-6 - Remove GTK dependency * Fri Dec 12 2025 Than Ngo - 143.0.10^chromium143.0.7499.109-2 - Enable gtk4 by default * Fri Dec 12 2025 Than Ngo - 143.0.10^chromium143.0.7499.109-1 - Update to 143.0.7499.109 - * High: Under coordination - * Medium CVE-2025-14372: Use after free in Password Manager - * Medium CVE-2025-14373: Inappropriate implementation in Toolbar - Workaround problem of auto dark mode inverting images and making them unreadable - Hoshino Lina: Update to cef-143.0.10+g8aed01b (rhbz#2421703) * Wed Dec 10 2025 LuK1337 - 143.0.9^chromium143.0.7499.40-6 - Backport Wayland Omnibox bug fix from upstream * Wed Dec 10 2025 Than Ngo - 143.0.9^chromium143.0.7499.40-1 - Update to 143.0.7499.40 - Hoshino Lina: Update to cef-143.0.9+ge88e818 (rhbz#2420939) - * High CVE-2025-13630: Type Confusion in V8 - * High CVE-2025-13631: Inappropriate implementation in Google Updater - * High CVE-2025-13632: Inappropriate implementation in DevTools - * High CVE-2025-13633: Use after free in Digital Credentials - * Medium CVE-2025-13634: Inappropriate implementation in Downloads - * Medium CVE-2025-13720: Bad cast in Loader - * Medium CVE-2025-13721: Race in v8 - * Low CVE-2025-13635: Inappropriate implementation in Downloads - * Low CVE-2025-13636: Inappropriate implementation in Split View - * Low CVE-2025-13637: Inappropriate implementation in Downloads - * Low CVE-2025-13638: Use after free in Media Stream - * Low CVE-2025-13639: Inappropriate implementation in WebRTC - * Low CVE-2025-13640: Inappropriate implementation inPasswords - Drop workaround darkmode-image-policy.patch - Fix build error due to Unresolved dependencies - Fix swiftshader to compile with llvm-16.0 - Refresh python-3.9-ftbfs patch for el9 - Refresh ppc64le patches - Refresh chromium.conf -------------------------------------------------------------------------------- References: [ 1 ] Bug #2420939 - cef-143.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=2420939 [ 2 ] Bug #2421703 - cef-143.0.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=2421703 [ 3 ] Bug #2423482 - cef-143.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=2423482 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6e776254bf' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Update for Fedora 43 enhances cef with critical patches for multiple high-risk CVEs including Type Confusion and Use After Free issues.. Cef, Fedora, CVE, Type Confusion, Update. . Severity: Critical.LinuxSecurity.com Team

Calendar 2 Dec 21, 2025 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorahigh

Fedora 42: CEF High WebGPU Out of Bounds Write CVE-2025-12725 Advisory

Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-58193e3850 2025-11-29 17:02:16.261252+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 42 Version : 142.0.14^chromium142.0.7444.162 Release : 1.fc42 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High CVE-2025-12727: Inappropriate implementation in V8 Medium CVE-2025-12728: Inappropriate implementation in Omnibox Medium CVE-2025-12729: Inappropriate implementation in Omnibox High CVE-2025-12428: Type Confusion in V8 High CVE-2025-12429: Inappropriate implementation in V8 High CVE-2025-12430: Object lifecycle issue in Media High CVE-2025-12431: Inappropriate implementation in Extensions High CVE-2025-12432: Race in V8 High CVE-2025-12433: Inappropriate implementation in V8 High CVE-2025-12036: Inappropriate implementation in V8 Medium CVE-2025-12434: Race in Storage Medium CVE-2025-12435: Incorrect security UI in Omnibox Medium CVE-2025-12436: Policy bypass in Extensions Medium CVE-2025-12437: Use after free in PageInfo Medium CVE-2025-12438: Use after free in Ozone Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption Low CVE-2025-12440: Inappropriate implementation in Autofill Medium CVE-2025-12441: Out of bounds read in V8 MediumCVE-2025-12443: Out of bounds read in WebXR Low CVE-2025-12444: Incorrect security UI in Fullscreen UI Low CVE-2025-12445: Policy bypass in Extensions Low CVE-2025-12446: Incorrect security UI in SplitView Low CVE-2025-12447: Incorrect security UI in Omnibox -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 18 2025 Asahi Lina - 142.0.14^chromium142.0.7444.162-1 - Update to cef-142.0.14+gceaf578 (rhbz#2413981) * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-4 - Fix FTBFS caused by rust-1.88 on EL9 * Tue Nov 18 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-3 - Fix FTBFS - epel9 has new rust-1.88, dropp chromium-134-rust- libadler2.patch * Fri Nov 14 2025 Than Ngo - 142.0.10^chromium142.0.7444.162-1 - Update to 142.0.7444.162 - * High CVE-2025-13042: Inappropriate implementation in V8 * Tue Nov 11 2025 Dominik 'Rathann' Mierzejewski - 142.0.10^chromium142.0.7444.134-2 - Rebuilt for FFmpeg 8 * Tue Nov 11 2025 Asahi Lina - 142.0.10^chromium142.0.7444.134-1 - Update to cef-142.0.10+g29548e2 (rhbz#2413981) * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.134-1 - Update to 142.0.7444.134 (rhbz#2413621) - * High CVE-2025-12725: Out of bounds write in WebGPU - * High CVE-2025-12726: Inappropriate implementation in Views - * High CVE-2025-12727: Inappropriate implementation in V8 - * Medium CVE-2025-12728: Inappropriate implementation in Omnibox - * Medium CVE-2025-12729: Inappropriate implementation in Omnibox * Sun Nov 9 2025 Than Ngo - 142.0.6^chromium142.0.7444.59-5 - Add CVEs in changelog - * High CVE-2025-12428: Type Confusion in V8 - * High CVE-2025-12429: Inappropriate implementation in V8 - * High CVE-2025-12430: Object lifecycle issue in Media - * High CVE-2025-12431: Inappropriate implementation in Extensions - * High CVE-2025-12432: Race in V8 - * High CVE-2025-12433: Inappropriate implementation in V8 - * High CVE-2025-12036: Inappropriate implementation in V8 - * MediumCVE-2025-12434: Race in Storage - * Medium CVE-2025-12435: Incorrect security UI in Omnibox - * Medium CVE-2025-12436: Policy bypass in Extensions - * Medium CVE-2025-12437: Use after free in PageInfo - * Medium CVE-2025-12438: Use after free in Ozone - * Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption - * Low CVE-2025-12440: Inappropriate implementation in Autofill - * Medium CVE-2025-12441: Out of bounds read in V8 - * Medium CVE-2025-12443: Out of bounds read in WebXR - * Low CVE-2025-12444: Incorrect security UI in Fullscreen UI - * Low CVE-2025-12445: Policy bypass in Extensions - * Low CVE-2025-12446: Incorrect security UI in SplitView - * Low CVE-2025-12447: Incorrect security UI in Omnibox * Tue Nov 4 2025 Dominik 'Rathann' Mierzejewski - 142.0.6^chromium142.0.7444.59-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-58193e3850' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Critical updatesfor Fedora 42's CEF application address multiple high-impact security issues from CVE-2025-12725 to CVE-2025-12447.. Fedora 42, CEF updates, security issues, CVE-2025-12725, implementation flaws. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 29, 2025 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here