Fedora Linux has been updated with security enhancements, featuring exim-4.98.1-1.fc40 for Fedora 40, fscrypt-0.3.5-2.fc41 for Fedora 41, and exim-4.98.1-1.fc41 for Fedora 41:

Fedora 40 Update: exim-4.98.1-1.fc40
Fedora 41 Update: fscrypt-0.3.5-2.fc41
Fedora 41 Update: exim-4.98.1-1.fc41

[SECURITY] Fedora 40 Update: exim-4.98.1-1.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-e694138ac5
2025-03-05 01:38:44.653327+00:00
--------------------------------------------------------------------------------

Name : exim
Product : Fedora 40
Version : 4.98.1
Release : 1.fc40
URL : https://www.exim.org/
Summary : The exim mail transfer agent
Description :
Exim is a message transfer agent (MTA) developed at the University of
Cambridge for use on Unix systems connected to the Internet. It is
freely available under the terms of the GNU General Public Licence. In
style it is similar to Smail 3, but its facilities are more
general. There is a great deal of flexibility in the way mail can be
routed, and there are extensive facilities for checking incoming
mail. Exim can be installed in place of sendmail, although the
configuration of exim is quite different to that of sendmail.

--------------------------------------------------------------------------------
Update Information:

This is an update fixing possible remote SQL injection.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 24 2025 Jaroslav ??karvada [jskarvad@redhat.com] - 4.98.1-1
- New version
Resolves: rhbz#2346977
- Fixed possible remote SQL injection
Resolves: CVE-2025-26794
- Updated exim maintainers keyring
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2346977 - exim-4.98.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2346977
[ 2 ] Bug #2347249 - CVE-2025-26794 exim: Exim: remote SQL injection [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2347249
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-e694138ac5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 41 Update: fscrypt-0.3.5-2.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-fc7c0ca5c5
2025-03-05 01:14:13.862674+00:00
--------------------------------------------------------------------------------

Name : fscrypt
Product : Fedora 41
Version : 0.3.5
Release : 2.fc41
URL : https://github.com/google/fscrypt
Summary : Go tool for managing Linux filesystem encryption
Description :
fscrypt is a high-level tool for the management of Linux filesystem encryption.
This tool manages metadata, key generation, key wrapping, PAM integration, and
provides a uniform interface for creating and modifying encrypted directories.

--------------------------------------------------------------------------------
Update Information:

Update to 0.3.5 to fix FTBFS and test failures
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 24 2025 Neal Gompa [ngompa@fedoraproject.org] - 0.3.5-2
- Backport fix for tests on non-x86 arches
* Fri Feb 14 2025 Neal Gompa [ngompa@fedoraproject.org] - 0.3.5-1
- Update to 0.3.5
- Add patch to fix building tests with Go 1.24
* Thu Jan 16 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.3.4-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2325331 - fscrypt being built with vulnerable golang version 1.23rc1
https://bugzilla.redhat.com/show_bug.cgi?id=2325331
[ 2 ] Bug #2334787 - fscrypt 0.3.5 available
https://bugzilla.redhat.com/show_bug.cgi?id=2334787
[ 3 ] Bug #2340182 - fscrypt: FTBFS in Fedora rawhide/f42
https://bugzilla.redhat.com/show_bug.cgi?id=2340182
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-fc7c0ca5c5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: exim-4.98.1-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-4dfc188932
2025-03-05 01:14:13.862645+00:00
--------------------------------------------------------------------------------

Name : exim
Product : Fedora 41
Version : 4.98.1
Release : 1.fc41
URL : https://www.exim.org/
Summary : The exim mail transfer agent
Description :
Exim is a message transfer agent (MTA) developed at the University of
Cambridge for use on Unix systems connected to the Internet. It is
freely available under the terms of the GNU General Public Licence. In
style it is similar to Smail 3, but its facilities are more
general. There is a great deal of flexibility in the way mail can be
routed, and there are extensive facilities for checking incoming
mail. Exim can be installed in place of sendmail, although the
configuration of exim is quite different to that of sendmail.

--------------------------------------------------------------------------------
Update Information:

This is an update fixing possible remote SQL injection.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 24 2025 Jaroslav ??karvada [jskarvad@redhat.com] - 4.98.1-1
- New version
Resolves: rhbz#2346977
- Fixed possible remote SQL injection
Resolves: CVE-2025-26794
- Updated exim maintainers keyring
* Thu Jul 25 2024 Miroslav Such?? [msuchy@redhat.com] - 4.98-3
- convert license to SPDX
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2346977 - exim-4.98.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2346977
[ 2 ] Bug #2347250 - CVE-2025-26794 exim: Exim: remote SQL injection [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2347250
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-4dfc188932' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------