Fedora 42 Update: firefox-143.0.3-1.fc42
Fedora 42 Update: sqlite-3.47.2-5.fc42
Fedora 42 Update: thunderbird-140.3.0-1.fc42
Fedora 42 Update: skopeo-1.20.0-3.fc42
Fedora 42 Update: bird-3.1.4-1.fc42
Fedora 42 Update: ntpd-rs-1.6.2-1.fc42
Fedora 42 Update: dnsdist-1.9.11-1.fc42
Fedora 42 Update: rust-ammonia-4.0.1-1.fc42
Fedora 42 Update: mapserver-8.4.1-1.fc42
Fedora 42 Update: python-nh3-0.2.21-2.fc42
Fedora 41 Update: bird-3.1.4-1.fc41
Fedora 41 Update: ntpd-rs-1.6.2-1.fc41
Fedora 41 Update: dnsdist-1.9.11-1.fc41
Fedora 41 Update: rust-ammonia-3.3.1-1.fc41
Fedora 41 Update: python-nh3-0.2.15-7.fc41
Fedora 41 Update: mapserver-8.4.1-1.fc41
Fedora 41 Update: xen-4.19.3-3.fc41
[SECURITY] Fedora 42 Update: firefox-143.0.3-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-ddecb35946
2025-10-01 14:43:51.750554+00:00
--------------------------------------------------------------------------------
Name : firefox
Product : Fedora 42
Version : 143.0.3
Release : 1.fc42
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.
--------------------------------------------------------------------------------
Update Information:
New upstream release (143.0.3)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 30 2025 Martin Stransky [stransky@redhat.com] - 143.0.3-1
- Updated to 143.0.3
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-ddecb35946' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: sqlite-3.47.2-5.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-3af464595a
2025-10-01 14:43:51.750546+00:00
--------------------------------------------------------------------------------
Name : sqlite
Product : Fedora 42
Version : 3.47.2
Release : 5.fc42
URL : http://www.sqlite.org/
Summary : Library that implements an embeddable SQL database engine
Description :
SQLite is a C library that implements an SQL database engine. A large
subset of SQL92 is supported. A complete database is stored in a
single disk file. The API is designed for convenience and ease of use.
Applications that link against SQLite can enjoy the power and
flexibility of an SQL database without the administrative hassles of
supporting a separate database server. Version 2 and version 3 binaries
are named to permit each to be installed on a single host
SQLite is built with some non-default settings:
- Additional APIs for table's and query's metadata are enabled
(SQLITE_ENABLE_COLUMN_METADATA)
- Directory syncs are disabled (SQLITE_DISABLE_DIRSYNC)
- `secure_delete` defaults to 'on', so deleted content is overwritten
with zeros (SQLITE_SECURE_DELETE)
- `sqlite3_unlock_notify()` is enabled - this feature allows to register a
callback that's invoked when lock is removed (SQLITE_ENABLE_UNLOCK_NOTIFY)
- `dbstat` virtual table with disk space usage is enabled
- `dbpage` virtual table providing direct access to underlying database file
is enabled (SQLITE_ENABLE_DBPAGE_VTAB)
- Threadsafe mode is set to 1 - Serialized, so it is safe to use in a
multithreaded environment (SQLITE_THREADSAFE=1)
- FTS3, FTS4 and FTS5 are enabled so versions 3 to 5 of the full-text search
engine are available (SQLITE_ENABLE_FTS3, SQLITE_ENABLE_FTS4,
SQLITE_ENABLE_FTS5)
- Pattern parser in FTS3 extension supports nested parenthesis and operators
`AND`, `OR` (SQLITE_ENABLE_FTS3_PARENTHESIS)
- R*Tree index extension is enabled (SQLITE_ENABLE_RTREE)
- Extension loading is enabled
- Sessions (sqlite-session feature) is enabled
- Preupdate hook is enabled
It is also important to note that shell has some extensions as its dependencies,
so some extensions are enabled by default in SQLite shell, but not in the system
libraries. Only the aforementioned extensions are available in the libraries:
FTS3, FTS4, FTS5, R*Tree
--------------------------------------------------------------------------------
Update Information:
cve fixes
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 9 2024 Ales Nezbeda [anezbeda@redhat.com] - 3.47.2-5
- Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2380241 - CVE-2025-6965 sqlite: Integer Truncation in SQLite [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2380241
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-3af464595a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: thunderbird-140.3.0-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-cccf7ed7f4
2025-10-01 14:43:51.750539+00:00
--------------------------------------------------------------------------------
Name : thunderbird
Product : Fedora 42
Version : 140.3.0
Release : 1.fc42
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 24 2025 Jan Horak [jhorak@redhat.com] - 140.3.0-1
- Update to 140.3.0 ESR
* Thu Sep 4 2025 Jan Horak [jhorak@redhat.com] - 140.2.1-1
- Update to 140.2.1 ESR
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-cccf7ed7f4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: skopeo-1.20.0-3.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-ad509c483b
2025-10-01 14:43:51.750544+00:00
--------------------------------------------------------------------------------
Name : skopeo
Product : Fedora 42
Version : 1.20.0
Release : 3.fc42
URL : https://github.com/containers/skopeo
Summary : Inspect container images and repositories on registries
Description :
Command line utility to inspect images and repositories directly on Docker
registries without the need to pull them
--------------------------------------------------------------------------------
Update Information:
Security update for CVE-2025-47906
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 29 2025 Lokesh Mandvekar [lsm5@redhat.com] - 1:1.20.0-3
- rebuild for CVE-2025-47906
* Tue Sep 2 2025 Lokesh Mandvekar [lsm5@redhat.com] - 1:1.20.0-2
- TMT: fetch tests from upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2399566 - CVE-2025-47906 skopeo: Unexpected paths returned from LookPath in os/exec [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2399566
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-ad509c483b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: bird-3.1.4-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f6b553e67d
2025-10-01 14:43:51.750536+00:00
--------------------------------------------------------------------------------
Name : bird
Product : Fedora 42
Version : 3.1.4
Release : 1.fc42
URL : https://bird.nic.cz/
Summary : BIRD Internet Routing Daemon
Description :
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border
Gateway Protocol (BGPv4), Routing Information Protocol (RIPv2, RIPng), Open
Shortest Path First protocol (OSPFv2, OSPFv3), Babel Routing Protocol (Babel),
Bidirectional Forwarding Detection (BFD), IPv6 router advertisements, static
routes, inter-table protocol, command-line interface allowing on-line control
and inspection of the status of the daemon, soft reconfiguration as well as a
powerful language for route filtering.
--------------------------------------------------------------------------------
Update Information:
BIRD 3.1.4 (2025-09-22)
BGP: Fixed crash on Notification with a message, CVE-2025-59688
BGP: Fixed invalid memory access in pending TX flush
BGP: Fixed a rare bug with listening socket delay
Pipe: Disabled statisticts for stopping pipe
Hash: Read-only assertions
ROA Aggregator: Fixed crash on multiwithdraw
Protocol: Fixed broken state announcements
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Robert Scheck [robert@fedoraproject.org] - 3.1.4-1
- Upgrade to 3.1.4 (#2397496)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2397496 - bird-3.1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2397496
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f6b553e67d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: ntpd-rs-1.6.2-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-7fbf258406
2025-10-01 14:43:51.750525+00:00
--------------------------------------------------------------------------------
Name : ntpd-rs
Product : Fedora 42
Version : 1.6.2
Release : 1.fc42
URL : https://github.com/pendulum-project/ntpd-rs
Summary : Full-featured implementation of NTP with NTS support
Description :
Full-featured implementation of NTP with NTS support.
--------------------------------------------------------------------------------
Update Information:
Update to version 1.6.2.
Includes fixes for CVE-2025-58066 (potential DoS in the ntpd-rs server) and
CVE-2025-58160 (potential tracing log pollution).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 1.6.2-1
- Update to version 1.6.2; Fixes RHBZ#2375009
* Thu Jul 24 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2391952 - CVE-2025-58066 ntpd-rs: DoS Vulnerability in ntpd-rs [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2391952
[ 2 ] Bug #2392042 - CVE-2025-58160 ntpd-rs: Tracing log pollution [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2392042
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-7fbf258406' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: dnsdist-1.9.11-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-b6c24f05eb
2025-10-01 14:43:51.750500+00:00
--------------------------------------------------------------------------------
Name : dnsdist
Product : Fedora 42
Version : 1.9.11
Release : 1.fc42
URL : https://dnsdist.org
Summary : Highly DNS-, DoS- and abuse-aware loadbalancer
Description :
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life
is to route traffic to the best server, delivering top performance to
legitimate users while shunting or blocking abusive traffic.
--------------------------------------------------------------------------------
Update Information:
Update to 1.9.11 to fix CVE-2025-30187
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 18 2025 Sander Hoentjen [shoentjen@antagonist.nl] - 1.9.11-1
- Update to 2.0.1
- Fixes CVE-2025-30187
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2396484 - CVE-2025-30187 dnsdist: Denial of service via crafted DoH exchange in PowerDNS DNSdist [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2396484
[ 2 ] Bug #2396485 - CVE-2025-30187 dnsdist: Denial of service via crafted DoH exchange in PowerDNS DNSdist [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2396485
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-b6c24f05eb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: rust-ammonia-4.0.1-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-7ec84ba6e9
2025-10-01 14:43:51.750497+00:00
--------------------------------------------------------------------------------
Name : rust-ammonia
Product : Fedora 42
Version : 4.0.1
Release : 1.fc42
URL : https://crates.io/crates/ammonia
Summary : HTML Sanitization
Description :
HTML Sanitization.
--------------------------------------------------------------------------------
Update Information:
Update the ammonia crate to version 4.0.1 and rebuild python-nh3 to apply fixes
for RUSTSEC-2025-0071.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 4.0.1-1
- Update to version 4.0.1
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-7ec84ba6e9' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: mapserver-8.4.1-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-38689b7760
2025-10-01 14:43:51.750491+00:00
--------------------------------------------------------------------------------
Name : mapserver
Product : Fedora 42
Version : 8.4.1
Release : 1.fc42
URL : http://www.mapserver.org
Summary : Environment for building spatially-enabled internet applications
Description :
Mapserver is an internet mapping program that converts GIS data to
map images in real time. With appropriate interface pages,
Mapserver can provide an interactive internet map based on
custom GIS data.
--------------------------------------------------------------------------------
Update Information:
Update to mapserver-8.4.1, fixes CVE-2025-59431.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Sandro Mani [manisandro@gmail.com] - 8.4.1-1
- Update to 8.4.1
* Tue Jul 29 2025 Sandro Mani [manisandro@gmail.com] - 8.4.0-5
- Rebuild (gdal)
* Thu Jul 24 2025 Fedora Release Engineering [releng@fedoraproject.org] - 8.4.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Mon Jul 7 2025 Jitka Plesnikova [jplesnik@redhat.com] - 8.4.0-3
- Perl 5.42 rebuild
* Mon Jun 2 2025 Python Maint - 8.4.0-2
- Rebuilt for Python 3.14
* Sat Jan 25 2025 Sandro Mani [manisandro@gmail.com] - 8.4.0-1
- Update to 8.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2397021 - CVE-2025-59431 mapserver: MapServer SQL injection [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2397021
[ 2 ] Bug #2397022 - CVE-2025-59431 mapserver: MapServer SQL injection [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2397022
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-38689b7760' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: python-nh3-0.2.21-2.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-7ec84ba6e9
2025-10-01 14:43:51.750497+00:00
--------------------------------------------------------------------------------
Name : python-nh3
Product : Fedora 42
Version : 0.2.21
Release : 2.fc42
URL : https://github.com/messense/nh3
Summary : Python binding to Ammonia HTML sanitizer Rust crate
Description :
Python binding to Ammonia HTML sanitizer Rust crate.
--------------------------------------------------------------------------------
Update Information:
Update the ammonia crate to version 4.0.1 and rebuild python-nh3 to apply fixes
for RUSTSEC-2025-0071.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 0.2.21-2
- Rebuild with ammonia 4.0.1 for RUSTSEC-2025-0071
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-7ec84ba6e9' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: bird-3.1.4-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-702902f388
2025-10-01 15:00:59.894579+00:00
--------------------------------------------------------------------------------
Name : bird
Product : Fedora 41
Version : 3.1.4
Release : 1.fc41
URL : https://bird.nic.cz/
Summary : BIRD Internet Routing Daemon
Description :
BIRD is a dynamic IP routing daemon supporting both, IPv4 and IPv6, Border
Gateway Protocol (BGPv4), Routing Information Protocol (RIPv2, RIPng), Open
Shortest Path First protocol (OSPFv2, OSPFv3), Babel Routing Protocol (Babel),
Bidirectional Forwarding Detection (BFD), IPv6 router advertisements, static
routes, inter-table protocol, command-line interface allowing on-line control
and inspection of the status of the daemon, soft reconfiguration as well as a
powerful language for route filtering.
--------------------------------------------------------------------------------
Update Information:
BIRD 3.1.4 (2025-09-22)
BGP: Fixed crash on Notification with a message, CVE-2025-59688
BGP: Fixed invalid memory access in pending TX flush
BGP: Fixed a rare bug with listening socket delay
Pipe: Disabled statisticts for stopping pipe
Hash: Read-only assertions
ROA Aggregator: Fixed crash on multiwithdraw
Protocol: Fixed broken state announcements
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Robert Scheck [robert@fedoraproject.org] - 3.1.4-1
- Upgrade to 3.1.4 (#2397496)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2397496 - bird-3.1.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2397496
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-702902f388' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: ntpd-rs-1.6.2-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-ee9b86c6d9
2025-10-01 15:00:59.894563+00:00
--------------------------------------------------------------------------------
Name : ntpd-rs
Product : Fedora 41
Version : 1.6.2
Release : 1.fc41
URL : https://github.com/pendulum-project/ntpd-rs
Summary : Full-featured implementation of NTP with NTS support
Description :
Full-featured implementation of NTP with NTS support.
--------------------------------------------------------------------------------
Update Information:
Update to version 1.6.2.
Includes fixes for CVE-2025-58066 (potential DoS in the ntpd-rs server) and
CVE-2025-58160 (potential tracing log pollution).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 1.6.2-1
- Update to version 1.6.2; Fixes RHBZ#2375009
* Thu Jul 24 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.5.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2391951 - CVE-2025-58066 ntpd-rs: DoS Vulnerability in ntpd-rs [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2391951
[ 2 ] Bug #2392003 - CVE-2025-58160 ntpd-rs: Tracing log pollution [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2392003
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-ee9b86c6d9' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: dnsdist-1.9.11-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-0f0623b719
2025-10-01 15:00:59.894555+00:00
--------------------------------------------------------------------------------
Name : dnsdist
Product : Fedora 41
Version : 1.9.11
Release : 1.fc41
URL : https://dnsdist.org
Summary : Highly DNS-, DoS- and abuse-aware loadbalancer
Description :
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life
is to route traffic to the best server, delivering top performance to
legitimate users while shunting or blocking abusive traffic.
--------------------------------------------------------------------------------
Update Information:
Update to 1.9.11 to fix CVE-2025-30187
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Sander Hoentjen [shoentjen@antagonist.nl] - 1.9.11-1
- Update to 1.9.11
- Fixes CVE-2025-30187
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2396484 - CVE-2025-30187 dnsdist: Denial of service via crafted DoH exchange in PowerDNS DNSdist [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2396484
[ 2 ] Bug #2396485 - CVE-2025-30187 dnsdist: Denial of service via crafted DoH exchange in PowerDNS DNSdist [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2396485
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-0f0623b719' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-ammonia-3.3.1-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-1be5992b52
2025-10-01 15:00:59.894553+00:00
--------------------------------------------------------------------------------
Name : rust-ammonia
Product : Fedora 41
Version : 3.3.1
Release : 1.fc41
URL : https://crates.io/crates/ammonia
Summary : HTML Sanitization
Description :
HTML Sanitization.
--------------------------------------------------------------------------------
Update Information:
Update the ammonia crate to version 3.3.1 and rebuild python-nh3 to apply fixes
for RUSTSEC-2025-0071.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 3.3.1-1
- Update to version 3.3.1
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-1be5992b52' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: python-nh3-0.2.15-7.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-1be5992b52
2025-10-01 15:00:59.894553+00:00
--------------------------------------------------------------------------------
Name : python-nh3
Product : Fedora 41
Version : 0.2.15
Release : 7.fc41
URL : https://github.com/messense/nh3
Summary : Python binding to Ammonia HTML sanitizer Rust crate
Description :
Python binding to Ammonia HTML sanitizer Rust crate.
--------------------------------------------------------------------------------
Update Information:
Update the ammonia crate to version 3.3.1 and rebuild python-nh3 to apply fixes
for RUSTSEC-2025-0071.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Fabio Valentini [decathorpe@gmail.com] - 0.2.15-7
- Rebuild with ammonia 3.3.1 for RUSTSEC-2025-0071
* Sat Sep 28 2024 Benjamin A. Beasley [code@musicinmybrain.net] - 0.2.15-6
- Fix automatic provides on Python extension due to SONAME
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-1be5992b52' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: mapserver-8.4.1-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-2b5c69ffe6
2025-10-01 15:00:59.894547+00:00
--------------------------------------------------------------------------------
Name : mapserver
Product : Fedora 41
Version : 8.4.1
Release : 1.fc41
URL : http://www.mapserver.org
Summary : Environment for building spatially-enabled internet applications
Description :
Mapserver is an internet mapping program that converts GIS data to
map images in real time. With appropriate interface pages,
Mapserver can provide an interactive internet map based on
custom GIS data.
--------------------------------------------------------------------------------
Update Information:
Update to mapserver-8.4.1, fixes CVE-2025-59431.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2025 Sandro Mani [manisandro@gmail.com] - 8.4.1-1
- Update to 8.4.1
* Tue Jul 29 2025 Sandro Mani [manisandro@gmail.com] - 8.4.0-5
- Rebuild (gdal)
* Thu Jul 24 2025 Fedora Release Engineering [releng@fedoraproject.org] - 8.4.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Mon Jul 7 2025 Jitka Plesnikova [jplesnik@redhat.com] - 8.4.0-3
- Perl 5.42 rebuild
* Mon Jun 2 2025 Python Maint - 8.4.0-2
- Rebuilt for Python 3.14
* Sat Jan 25 2025 Sandro Mani [manisandro@gmail.com] - 8.4.0-1
- Update to 8.4.0
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 8.2.2-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Jan 8 2025 Mamoru TASAKA [mtasaka@fedoraproject.org] - 8.2.2-5
- Rebuild for https://fedoraproject.org/wiki/Changes/Ruby_3.4
* Sat Nov 9 2024 Sandro Mani [manisandro@gmail.com] - 8.2.2-4
- Rebuild (GDAL)
* Fri Nov 8 2024 Sandro Mani [manisandro@gmail.com] - 8.2.2-3
- Rebuild (gdal)
* Mon Oct 14 2024 Remi Collet [remi@fedoraproject.org] - 8.2.2-2
- rebuild for https://fedoraproject.org/wiki/Changes/php84
* Tue Sep 3 2024 Neil Hanlon [neil@shrug.pw] - 8.2.2-1
- update to 8.2.2
* Tue Aug 20 2024 Neil Hanlon [neil@shrug.pw] - 8.2.1-1
- update to 8.2.1
- bring in patch for zero-size malloc and buffer overflow
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2397021 - CVE-2025-59431 mapserver: MapServer SQL injection [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2397021
[ 2 ] Bug #2397022 - CVE-2025-59431 mapserver: MapServer SQL injection [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2397022
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-2b5c69ffe6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: xen-4.19.3-3.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-643cc72c6f
2025-10-01 15:00:59.894503+00:00
--------------------------------------------------------------------------------
Name : xen
Product : Fedora 41
Version : 4.19.3
Release : 3.fc41
URL : http://xen.org/
Summary : Xen is a virtual machine monitor
Description :
This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor
--------------------------------------------------------------------------------
Update Information:
Mutiple vulnerabilities in the Viridian interface [XSA-472,
CVE-2025-27466, CVE-2025-58142, CVE-2025-58143]
Arm issues with page refcounting [XSA-473, CVE-2025-58144,
CVE-2025-58145]
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 15 2025 Michael Young [m.a.young@durham.ac.uk] - 4.19.3-3
- Mutiple vulnerabilities in the Viridian interface [XSA-472,
CVE-2025-27466, CVE-2025-58142, CVE-2025-58143]
- Arm issues with page refcounting [XSA-473, CVE-2025-58144,
CVE-2025-58145]
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2395131 - CVE-2025-58145 xen: Arm issues with page refcounting [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2395131
[ 2 ] Bug #2395133 - CVE-2025-58144 xen: Arm issues with page refcounting [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2395133
[ 3 ] Bug #2395157 - CVE-2025-58142 xen: NULL pointer dereference by assuming the SIM page is mapped when a synthetic timer message has to be delivered [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2395157
[ 4 ] Bug #2395159 - CVE-2025-58143 xen: race condition when the mapping of the reference TSC page [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2395159
[ 5 ] Bug #2395161 - CVE-2025-27466 xen: A NULL pointer dereference in the updating of the reference TSC area [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2395161
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-643cc72c6f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
