Bind, QT6, FluidSynth, and more updates for Fedora

Fedora Linux 9154 Published 2025-10-30 07:36 by Philipp Esselbach

News

[SECURITY] Fedora 42 Update: bind-9.18.41-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-92566203fd
2025-10-30 04:33:58.492920+00:00
--------------------------------------------------------------------------------

Name : bind
Product : Fedora 42
Version : 9.18.41
Release : 1.fc42
URL : https://www.isc.org/downloads/bind/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

Update to 9.18.41 (rhbz#2405786)
Security fixes:
DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
Address various spoofing attacks. (CVE-2025-40778)
Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)
New Features:
Support for parsing HHIT and BRID records has been added.
Removed Features:
Deprecate the "tkey-domain" statement.
Deprecate the "tkey-gssapi-credential" statement.
Bug Fixes:
Prevent spurious SERVFAILs for certain 0-TTL resource records.
Missing DNSSEC information when CD bit is set in query.
https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-
bind-9-18-41
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 24 2025 Petr Men????k [pemensik@redhat.com] - 32:9.18.41-1
- Update to 9.18.41 (rhbz#2405786, CVE-2025-8677 CVE-2025-40778 CVE-2025-40780)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2405786 - bind-9.18.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2405786
[ 2 ] Bug #2405833 - CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2405833
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-92566203fd' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 42 Update: bind-dyndb-ldap-11.11-7.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-92566203fd
2025-10-30 04:33:58.492920+00:00
--------------------------------------------------------------------------------

Name : bind-dyndb-ldap
Product : Fedora 42
Version : 11.11
Release : 7.fc42
URL : https://releases.pagure.org/bind-dyndb-ldap
Summary : LDAP back-end plug-in for BIND
Description :
This package provides an LDAP back-end plug-in for BIND. It features
support for dynamic updates and internal caching, to lift the load
off of your LDAP server.

--------------------------------------------------------------------------------
Update Information:

Update to 9.18.41 (rhbz#2405786)
Security fixes:
DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
Address various spoofing attacks. (CVE-2025-40778)
Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)
New Features:
Support for parsing HHIT and BRID records has been added.
Removed Features:
Deprecate the "tkey-domain" statement.
Deprecate the "tkey-gssapi-credential" statement.
Bug Fixes:
Prevent spurious SERVFAILs for certain 0-TTL resource records.
Missing DNSSEC information when CD bit is set in query.
https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-
bind-9-18-41
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 24 2025 Petr Men????k [pemensik@redhat.com] - 11.11-7
- Rebuilt for BIND 9.18.41 (rhbz#2405786)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2405786 - bind-9.18.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2405786
[ 2 ] Bug #2405833 - CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2405833
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-92566203fd' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 42 Update: qt6-qtwebview-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtwebview
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - WebView component
Description :
Qt WebView provides a way to display web content in a QML application
without necessarily including a full web browser stack by using native
APIs where it makes sense.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtwebchannel-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtwebchannel
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io
Summary : Qt6 - WebChannel component
Description :
The Qt WebChannel module provides a library for seamless integration of C++
and QML applications with HTML/JavaScript clients. Any QObject can be
published to remote clients, where its public API becomes available.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtwayland-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtwayland
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Wayland platform support and QtCompositor module
Description :
Qt6 - Wayland platform support and QtCompositor module.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: zeal-0.7.2-14.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : zeal
Product : Fedora 42
Version : 0.7.2
Release : 14.fc42
URL : https://zealdocs.org/
Summary : Offline documentation browser inspired by Dash
Description :
Zeal is a simple offline documentation browser inspired by Dash.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 0.7.2-14
- Rebuild (qt6)
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.7.2-13
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.7.2-12
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtspeech-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtspeech
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Speech component
Description :
The module enables a Qt application to support accessibility features
such as text-to-speech, which is useful for end-users who are visually
challenged or cannot access the application for whatever reason. The
most common use case where text-to-speech comes in handy is when the
end-user is driving and cannot attend the incoming messages on the phone.
In such a scenario, the messaging application can read out the incoming
message. Qt Serial Port provides the basic functionality, which includes
configuring, I/O operations, getting and setting the control signals of
the RS-232 pinouts.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt-creator-16.0.2-3.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt-creator
Product : Fedora 42
Version : 16.0.2
Release : 3.fc42
URL : https://www.qt.io/ide/
Summary : Cross-platform IDE for Qt
Description :
Qt Creator is a cross-platform IDE (integrated development environment)
tailored to the needs of Qt developers.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 22 2025 Jan Grulich [jgrulich@redhat.com]
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtwebsockets-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtwebsockets
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt-project.org/
Summary : Qt6 - WebSockets component
Description :
The QtWebSockets module implements the WebSocket protocol as specified in RFC
6455. It solely depends on Qt (no external dependencies).

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtsvg-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtsvg
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Support for rendering and displaying SVG
Description :
Scalable Vector Graphics (SVG) is an XML-based language for describing
two-dimensional vector graphics. Qt provides classes for rendering and
displaying SVG drawings in widgets and on other paint devices.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtwebengine-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtwebengine
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QtWebEngine components
Description :
Qt6 - QtWebEngine components.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtvirtualkeyboard-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtvirtualkeyboard
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io
Summary : Qt6 - VirtualKeyboard component
Description :
The Qt Virtual Keyboard project provides an input framework and reference keyboard frontend
for Qt 6. Key features include:
* Customizable keyboard layouts and styles with dynamic switching.
* Predictive text input with word selection.
* Character preview and alternative character view.
* Automatic capitalization and space insertion.
* Scalability to different resolutions.
* Support for different character sets (Latin, Simplified/Traditional Chinese, Hindi, Japanese, Arabic, Korean, and others).
* Support for most common input languages, with possibility to easily extend the language support.
* Left-to-right and right-to-left input.
* Hardware key support for 2-way and 5-way navigation.
* Handwriting support, with gestures for fullscreen input.
* Audio feedback.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qttranslations-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qttranslations
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QtTranslations module
Description :
Qt6 - QtTranslations module.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qttools-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qttools
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QtTool components
Description :
Qt6 - QtTool components.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtremoteobjects-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtremoteobjects
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Qt Remote Objects
Description :
Qt Remote Objects (QtRO) is an inter-process communication (IPC) module developed for Qt.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtquick3dphysics-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtquick3dphysics
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Quick3D Physics Libraries and utilities
Description :
The Qt 6 Quick3D Physics library.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtpositioning-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtpositioning
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Positioning component
Description :
The Qt Positioning APIs gives developers the ability to
determine a position by using a variety of possible sources, including
satellite, or wifi, or text file, and so on.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtshadertools-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtshadertools
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Qt Shader Tools module builds on the SPIR-V Open Source Ecosystem
Description :
Qt6 - Qt Shader Tools module builds on the SPIR-V Open Source Ecosystem.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtserialbus-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtserialbus
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - SerialBus component
Description :
Qt Serial Bus (API) provides classes and functions to access the various
industrial serial buses and protocols, such as CAN, ModBus, and others.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtserialport-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtserialport
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - SerialPort component
Description :
Qt Serial Port provides the basic functionality, which includes configuring,
I/O operations, getting and setting the control signals of the RS-232 pinouts.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtscxml-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtscxml
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - ScXml component
Description :
The Qt SCXML module provides functionality to create state machines from SCXML files.
This includes both dynamically creating state machines loading the SCXML file and instantiating states and transitions)
and generating a C++ file that has a class implementing the state machine.
It also contains functionality to support data models and executable content.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtsensors-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtsensors
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io/
Summary : Qt6 - Sensors component
Description :
The Qt Sensors API provides access to sensor hardware via QML and C++
interfaces. The Qt Sensors API also provides a motion gesture recognition
API for devices.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtquicktimeline-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtquicktimeline
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QuickTimeline plugin
Description :
The Qt Quick Timeline plugin provides QML types to use timelines and keyframes
to animate Qt Quick user interfaces.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtlanguageserver-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtlanguageserver
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io
Summary : Qt6 - LanguageServer component
Description :
The Qt Language Server component provides an implementation of the Language
Server protocol.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtquick3d-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtquick3d
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Quick3D Libraries and utilities
Description :
The Qt 6 Quick3D library.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtgrpc-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtgrpc
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Support for using gRPC and Protobuf
Description :
Protocol Buffers (Protobuf) is a cross-platform data format used to
serialize structured data. gRPC provides a remote procedure call
framework based on Protobuf. Qt provides tooling and classes to
use these technologies.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtmqtt-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtmqtt
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Mqtt module
Description :
MQTT is a machine-to-machine (M2M) protocol utilizing the publish-and-subscribe
paradigm, and provides a channel with minimal communication overhead.
The Qt MQTT module provides a standard compliant implementation of the MQTT
protocol specification. It enables applications to act as telemetry displays
and devices to publish telemetry data.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtimageformats-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtimageformats
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QtImageFormats component
Description :
The core Qt Gui library by default supports reading and writing image
files of the most common file formats: PNG, JPEG, BMP, GIF and a few more,
ref. Reading and Writing Image Files. The Qt Image Formats add-on module
provides optional support for other image file formats, including:
MNG, TGA, TIFF, WBMP.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtnetworkauth-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtnetworkauth
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - NetworkAuth component
Description :
Qt6 - NetworkAuth component

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtopcua-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtopcua
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - OPC UA component
Description :
Qt OPC UA (API) provides classes and functions to access the OPC UA protocol

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtmultimedia-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtmultimedia
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Multimedia support
Description :
The Qt Multimedia module provides a rich feature set that enables you to
easily take advantage of a platforms multimedia capabilites and hardware.
This ranges from the playback and recording of audio and video content to
the use of available devices like cameras and radios.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtdatavis3d-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtdatavis3d
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Qt Data Visualization component
Description :
Qt Data Visualization module provides multiple graph types to visualize data in
3D space both with C++ and Qt Quick 2.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtlottie-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtlottie
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Lottie Animation
Description :
Qt Lottie Animation provides a QML API for rendering graphics and animations
that are exported in JSON format by the Bodymovin plugin for Adobe After
Effects.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtlocation-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtlocation
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Location Libraries
Description :
The Qt Location API helps you create viable mapping solutions using
the data available from some of the popular location services.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtconnectivity-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtconnectivity
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io
Summary : Qt6 - Connectivity components
Description :
Qt6 - Connectivity components.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qthttpserver-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qthttpserver
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt-project.org/
Summary : Library to facilitate the creation of an http server with Qt
Description :
Library to facilitate the creation of an http server with Qt.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : https://getfedora.org/
Summary : Qt6 meta package
Description :
Qt6 meta package.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtdeclarative-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtdeclarative
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - QtDeclarative component
Description :
Qt6 - QtDeclarative component.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtcharts-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtcharts
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Charts component
Description :
Qt Charts module provides a set of easy to use chart components. It uses the Qt Graphics View Framework, therefore charts can be easily
integrated to modern user interfaces. Qt Charts can be used as QWidgets, QGraphicsWidget, or QML types.
Users can easily create impressive graphs by selecting one of the charts themes.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qt3d-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qt3d
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Qt3D QML bindings and C++ APIs
Description :
Qt 3D provides functionality for near-realtime simulation systems with
support for 2D and 3D rendering in both Qt C++ and Qt Quick applications).

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtbase-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtbase
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt-project.org/
Summary : Qt6 - QtBase components
Description :
Qt is a software toolkit for developing applications.

This package contains base tools, like string, xml, and network
handling.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qtcoap-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qtcoap
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - CoAP component
Description :
Qt CoAP (API) provides classes and functions to access the CoAP protocol

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qt6-qt5compat-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : qt6-qt5compat
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://www.qt.io
Summary : Qt6 - Qt 5 Compatibility Libraries
Description :
Qt6 - Qt 5 Compatibility Libraries.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtwebchannel-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtwebchannel
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtWebChannel component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the 32-bit Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: python-pyqt6-6.9.0-5.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : python-pyqt6
Product : Fedora 42
Version : 6.9.0
Release : 5.fc42
URL : http://www.riverbankcomputing.com/software/pyqt/
Summary : PyQt6 is Python bindings for Qt6
Description :
PyQt6 is Python bindings for Qt6.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 22 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.0-5
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtshadertools-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtshadertools
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - Qt Shader Tools component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtsensors-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtsensors
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtSensors component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: nheko-0.12.1-10.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : nheko
Product : Fedora 42
Version : 0.12.1
Release : 10.fc42
URL : https://github.com/Nheko-Reborn/nheko
Summary : Desktop client for the Matrix protocol
Description :
The motivation behind the project is to provide a native desktop app
for Matrix that feels more like a mainstream chat app.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 0.12.1-10
- Rebuild (qt6)
* Wed Oct 1 2025 Jan Grulich [jgrulich@redhat.com] - 0.12.1-9
- Add back "BR: qt6-qtbase-private-devel"
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.12.1-8
- Drop unused "BR: qt6-qtbase-private-devel"
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.12.1-7
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtwebsockets-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtwebsockets
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtWebsockets component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtpositioning-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtpositioning
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - Qt Positioning component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qttranslations-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qttranslations
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtTranslations component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtsvg-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtsvg
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtSvg component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qttools-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qttools
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtTools component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtserialport-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtserialport
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - Qt Serial Port component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtcharts-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtcharts
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtCharts component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtdeclarative-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtdeclarative
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtDeclarative component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtscxml-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtscxml
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtScxml component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtbase-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtbase
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtBase component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the 32-bit Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qt5compat-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qt5compat
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - Qt5Compat component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the 32-bit Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtmultimedia-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtmultimedia
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtMultimedia component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the 32-bit Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtlocation-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtlocation
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtLocation component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: LabPlot-2.12.1-11.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : LabPlot
Product : Fedora 42
Version : 2.12.1
Release : 11.fc42
URL : https://labplot.kde.org/
Summary : Data Analysis and Visualization
Description :
LabPlot is a FREE, open source and cross-platform Data Visualization and
Analysis software accessible to everyone.

- High-quality Data Visualization and Plotting with just a few clicks
- Reliable and easy Data Analysis and Statistics, no coding required!
- Intuitive and fast Computing with Interactive Notebooks
- Effortless Data Extraction from plots and support for Live Data
- Smooth Data Import and Export to and from multiple formats
- Available for Windows, macOS, Linux and FreeBSD

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 2.12.1-11
- Rebuild (qt6)
* Wed Oct 1 2025 Jan Grulich [jgrulich@redhat.com] - 2.12.1-10
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 2.12.1-9
- Rebuild (qt6)
* Wed Sep 17 2025 Gwyn Ciesla [gwync@protonmail.com] - 2.12.1-8
- Bump EVR
* Wed Sep 17 2025 Gwyn Ciesla [gwync@protonmail.com] - 2.12.1-7
- liborcus rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtimageformats-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtimageformats
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtImageFormats component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: kddockwidgets-1.7.0-27.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : kddockwidgets
Product : Fedora 42
Version : 1.7.0
Release : 27.fc42
URL : https://github.com/KDAB/KDDockWidgets
Summary : Qt dock widget library
Description :
Qt dock widget library written by KDAB, suitable for replacing QDockWidget
and implementing advanced functionalities missing in Qt.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 1.7.0-27
- Rebuild (qt6)
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 1.7.0-26
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: fcitx5-qt-5.1.10-10.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : fcitx5-qt
Product : Fedora 42
Version : 5.1.10
Release : 10.fc42
URL : https://github.com/fcitx/fcitx5-qt
Summary : Qt library and IM module for fcitx5
Description :
Qt library and IM module for fcitx5.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 5.1.10-10
- Rebuild (qt6)
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 5.1.10-9
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 5.1.10-8
- Rebuild (qt6)
* Mon Sep 22 2025 Jan Grulich [jgrulich@redhat.com] - 5.1.10-7
- Revert "Drop unused "BR: qt6-qtbase-private-devel""
* Mon Sep 22 2025 Jan Grulich [jgrulich@redhat.com] - 5.1.10-6
- Drop unused "BR: qt6-qtbase-private-devel"
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qt3d-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qt3d
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - Qt3d component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: dtk6gui-6.0.27-12.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : dtk6gui
Product : Fedora 42
Version : 6.0.27
Release : 12.fc42
URL : https://github.com/linuxdeepin/dtk6gui
Summary : Deepin Toolkit, gui module for DDE look and feel
Description :
Deepin Tool Kit (DtkGui) is the development graphical user interface of all
C++/Qt Developer work on Deepin.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-12
- Rebuild (qt6)
* Fri Oct 3 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-11
- Make the Qt 6.10 patch buildable with Qt 6.9
* Wed Oct 1 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-10
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-9
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: mingw-qt6-qtactiveqt-6.9.3-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : mingw-qt6-qtactiveqt
Product : Fedora 42
Version : 6.9.3
Release : 1.fc42
URL : http://qt.io/
Summary : Qt6 for Windows - QtActiveQt component
Description :
This package contains the Qt software toolkit for developing
cross-platform applications.

This is the Windows version of Qt, for use in conjunction with the
Fedora Windows cross-compiler.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 21 2025 Jan Grulich [jgrulich@redhat.com] - 6.9.3-1
- Update to 6.9.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: gammaray-3.1.0-15.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : gammaray
Product : Fedora 42
Version : 3.1.0
Release : 15.fc42
URL : https://github.com/KDAB/GammaRay
Summary : A tool for examining internals of Qt applications
Description :
A tool to poke around in a Qt-application and also to manipulate
the application to some extent. It uses various DLL injection
techniques to hook into an application at run-time and provide
access to a lot of interesting information.

GammaRay can introspect Qt 6 and Qt 5 applications.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 3.1.0-15
- Rebuild (qt6)
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 3.1.0-14
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: dtk6core-6.0.27-11.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : dtk6core
Product : Fedora 42
Version : 6.0.27
Release : 11.fc42
URL : https://github.com/linuxdeepin/dtk6core
Summary : Deepin tool kit core modules
Description :
Deepin tool kit core modules.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-11
- Rebuild (qt6)
* Fri Oct 3 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-10
- Make the Qt 6.10 patch buildable with Qt 6.9
* Wed Oct 1 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-9
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-8
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: dtk6widget-6.0.27-10.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : dtk6widget
Product : Fedora 42
Version : 6.0.27
Release : 10.fc42
URL : https://github.com/linuxdeepin/dtk6widget
Summary : Deepin base graphical widgets library
Description :
Deepin Tool Kit Widget(DtkWidget) provides the base widgets on Deepin.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-10
- Rebuild (qt6)
* Wed Oct 1 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-9
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 6.0.27-8
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: dtk6log-0.0.2-13.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-945dff8564
2025-10-30 04:33:58.492914+00:00
--------------------------------------------------------------------------------

Name : dtk6log
Product : Fedora 42
Version : 0.0.2
Release : 13.fc42
URL : https://github.com/linuxdeepin/dtk6log
Summary : Simple, convenient and thread safe logger for Qt-based C++ apps
Description :
Simple, convenient and thread safe logger for Qt-based C++ apps.

--------------------------------------------------------------------------------
Update Information:

Qt 6.9.3 bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 8 2025 Jan Grulich [jgrulich@redhat.com] - 0.0.2-13
- Rebuild (qt6)
* Fri Oct 3 2025 Jan Grulich [jgrulich@redhat.com] - 0.0.2-12
- Make the Qt 6.10 patch buildable with Qt 6.9
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.0.2-11
- Fix build against Qt 6.10
* Tue Sep 30 2025 Jan Grulich [jgrulich@redhat.com] - 0.0.2-10
- Rebuild (qt6)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2402380
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: fluidsynth-2.4.8-2.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-1131df0f70
2025-10-30 04:33:58.492895+00:00
--------------------------------------------------------------------------------

Name : fluidsynth
Product : Fedora 42
Version : 2.4.8
Release : 2.fc42
URL : http://www.fluidsynth.org/
Summary : Real-time software synthesizer
Description :
FluidSynth is a real-time software synthesizer based on the SoundFont 2
specifications. It is a "software synthesizer". FluidSynth can read MIDI events
from the MIDI input device and render them to the audio device. It features
real-time effect modulation using SoundFont 2.01 modulators, and a built-in
command line shell. It can also play MIDI files (note: FluidSynth was previously
called IIWU Synth).

--------------------------------------------------------------------------------
Update Information:

Fix world writeable /run/lock/fluidsynth
Update to 2.4.8
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Christoph Karl - 2.4.8-2
- Fix world writeable /run/lock/fluidsynth
* Thu Oct 16 2025 Christoph Karl - 2.4.8-1
- Update to 2.4.8
- Fix world writeable /run/lock/fluidsynth
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2404360 - /run/lock/fluidsynth is world-writable
https://bugzilla.redhat.com/show_bug.cgi?id=2404360
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-1131df0f70' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 43 Update: xorg-x11-server-Xwayland-24.1.9-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-fe61a6ad60
2025-10-30 04:29:09.915524+00:00
--------------------------------------------------------------------------------

Name : xorg-x11-server-Xwayland
Product : Fedora 43
Version : 24.1.9
Release : 1.fc43
URL : http://www.x.org
Summary : Xwayland
Description :
Xwayland is an X server for running X clients under Wayland.

--------------------------------------------------------------------------------
Update Information:

Update to xwayland 24.1.9
CVE fix for: CVE-2025-62229, CVE-2025-62230, CVE-2025-62231
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 28 2025 Olivier Fourdan [ofourdan@redhat.com] - 24.1.9-1
- Update to xwayland 24.1.9 (#2406802)
- CVE fix for: CVE-2025-62229, CVE-2025-62230, CVE-2025-62231
* Wed Oct 15 2025 Olivier Fourdan [ofourdan@redhat.com] - 24.1.8-4
- Revert last change, that breaks keyboard modifiers in gamescope
* Tue Sep 9 2025 Fedora Release Engineering [releng@fedoraproject.org] - 24.1.8-3
- Add fix for keyboard modifiers from upstream
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2406802 - xorg-x11-server-Xwayland-24.1.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2406802
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-fe61a6ad60' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 43 Update: fluidsynth-2.4.8-2.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-0ea3179bb0
2025-10-30 04:29:09.915489+00:00
--------------------------------------------------------------------------------

Name : fluidsynth
Product : Fedora 43
Version : 2.4.8
Release : 2.fc43
URL : http://www.fluidsynth.org/
Summary : Real-time software synthesizer
Description :
FluidSynth is a real-time software synthesizer based on the SoundFont 2
specifications. It is a "software synthesizer". FluidSynth can read MIDI events
from the MIDI input device and render them to the audio device. It features
real-time effect modulation using SoundFont 2.01 modulators, and a built-in
command line shell. It can also play MIDI files (note: FluidSynth was previously
called IIWU Synth).

--------------------------------------------------------------------------------
Update Information:

Fix world writeable /run/lock/fluidsynth
Update to 2.4.8
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Christoph Karl - 2.4.8-2
- Fix world writeable /run/lock/fluidsynth
* Thu Oct 16 2025 Christoph Karl - 2.4.8-1
- Update to 2.4.8
- Fix world writeable /run/lock/fluidsynth
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2404360 - /run/lock/fluidsynth is world-writable
https://bugzilla.redhat.com/show_bug.cgi?id=2404360
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-0ea3179bb0' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: unbound-1.24.1-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-224e937c18
2025-10-30 04:19:29.232279+00:00
--------------------------------------------------------------------------------

Name : unbound
Product : Fedora 41
Version : 1.24.1
Release : 1.fc41
URL : https://nlnetlabs.nl/projects/unbound/
Summary : Validating, recursive, and caching DNS(SEC) resolver
Description :
Unbound is a validating, recursive, and caching DNS(SEC) resolver.

The C implementation of Unbound is developed and maintained by NLnet
Labs. It is based on ideas and algorithms taken from a java prototype
developed by Verisign labs, Nominet, Kirei and ep.net.

Unbound is designed as a set of modular components, so that also
DNSSEC (secure DNS) validation and stub-resolvers (that do not run
as a server, but are linked into an application) are easily possible.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2025-11411 (possible domain hijacking attack), reported by Yuxiao Wu,
Yunyi Zhang, Baojun Liu and Haixin Duan from Tsinghua University.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 24 2025 Petr Men????k [pemensik@redhat.com] - 1.24.1-1
- Update to 1.24.1 (rhbz#2405698)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2405698 - unbound-1.24.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2405698
[ 2 ] Bug #2405929 - CVE-2025-11411 unbound: Unbound domain hijacking via promiscuous records [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2405929
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-224e937c18' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 41 Update: bind-9.18.41-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-10c407da27
2025-10-30 04:19:29.232276+00:00
--------------------------------------------------------------------------------

Name : bind
Product : Fedora 41
Version : 9.18.41
Release : 1.fc41
URL : https://www.isc.org/downloads/bind/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

--------------------------------------------------------------------------------
Update Information:

Update to 9.18.41 (rhbz#2405786)
Security fixes:
DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
Address various spoofing attacks. (CVE-2025-40778)
Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)
New Features:
Support for parsing HHIT and BRID records has been added.
Removed Features:
Deprecate the "tkey-domain" statement.
Deprecate the "tkey-gssapi-credential" statement.
Bug Fixes:
Prevent spurious SERVFAILs for certain 0-TTL resource records.
Missing DNSSEC information when CD bit is set in query.
https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-
bind-9-18-41
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 24 2025 Petr Men????k [pemensik@redhat.com] - 32:9.18.41-1
- Update to 9.18.41 (rhbz#2405786, CVE-2025-8677 CVE-2025-40778 CVE-2025-40780)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2405786 - bind-9.18.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2405786
[ 2 ] Bug #2405831 - CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2405831
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-10c407da27' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 41 Update: bind-dyndb-ldap-11.10-35.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-10c407da27
2025-10-30 04:19:29.232276+00:00
--------------------------------------------------------------------------------

Name : bind-dyndb-ldap
Product : Fedora 41
Version : 11.10
Release : 35.fc41
URL : https://releases.pagure.org/bind-dyndb-ldap
Summary : LDAP back-end plug-in for BIND
Description :
This package provides an LDAP back-end plug-in for BIND. It features
support for dynamic updates and internal caching, to lift the load
off of your LDAP server.

--------------------------------------------------------------------------------
Update Information:

Update to 9.18.41 (rhbz#2405786)
Security fixes:
DNSSEC validation fails if matching but invalid DNSKEY is found. (CVE-2025-8677)
Address various spoofing attacks. (CVE-2025-40778)
Cache-poisoning due to weak pseudo-random number generator. (CVE-2025-40780)
New Features:
Support for parsing HHIT and BRID records has been added.
Removed Features:
Deprecate the "tkey-domain" statement.
Deprecate the "tkey-gssapi-credential" statement.
Bug Fixes:
Prevent spurious SERVFAILs for certain 0-TTL resource records.
Missing DNSSEC information when CD bit is set in query.
https://downloads.isc.org/isc/bind9/9.18.41/doc/arm/html/notes.html#notes-for-
bind-9-18-41
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 24 2025 Petr Men????k [pemensik@redhat.com] - 11.10-35
- Rebuilt for BIND 9.18.41 (rhbz#2405786)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2405786 - bind-9.18.41 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2405786
[ 2 ] Bug #2405831 - CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 bind: various flaws [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2405831
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-10c407da27' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 41 Update: fluidsynth-2.4.8-2.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-6db4dcdf66
2025-10-30 04:19:29.232271+00:00
--------------------------------------------------------------------------------

Name : fluidsynth
Product : Fedora 41
Version : 2.4.8
Release : 2.fc41
URL : http://www.fluidsynth.org/
Summary : Real-time software synthesizer
Description :
FluidSynth is a real-time software synthesizer based on the SoundFont 2
specifications. It is a "software synthesizer". FluidSynth can read MIDI events
from the MIDI input device and render them to the audio device. It features
real-time effect modulation using SoundFont 2.01 modulators, and a built-in
command line shell. It can also play MIDI files (note: FluidSynth was previously
called IIWU Synth).

--------------------------------------------------------------------------------
Update Information:

Fix world writeable /run/lock/fluidsynth
Update to 2.4.8
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 20 2025 Christoph Karl - 2.4.8-2
- Fix world writeable /run/lock/fluidsynth
* Thu Oct 16 2025 Christoph Karl - 2.4.8-1
- Update to 2.4.8
- Fix world writeable /run/lock/fluidsynth
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2404360 - /run/lock/fluidsynth is world-writable
https://bugzilla.redhat.com/show_bug.cgi?id=2404360
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-6db4dcdf66' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

Linux Kernel 6.12.56 released

Redis, OpenShift, Kernel, Firefox, LibTIFF updates for RHEL