Fedora 43 and 44 have received a batch of security updates covering essential system components like the Linux kernel, PHP, Firefox, and GitPython alongside several Rust-based Sequoia OpenPGP libraries. These releases patch multiple known vulnerabilities, resolve memory leaks, and fix critical bugs across networking, cryptography, and web processing modules. Administrators can apply these changes quickly by running a targeted dnf upgrade command with the provided advisory identifiers.

Fedora 43 Update: kernel-7.0.7-100.fc43
Fedora 43 Update: firefox-150.0.3-1.fc43
Fedora 43 Update: freerdp-3.26.0-4.fc43
Fedora 43 Update: GitPython-3.1.50-1.fc43
Fedora 43 Update: php-8.4.21-1.fc43
Fedora 44 Update: kernel-7.0.7-200.fc44
Fedora 44 Update: expat-2.8.1-1.fc44
Fedora 44 Update: rust-sequoia-sqv-1.3.0-6.fc44
Fedora 44 Update: rust-sequoia-octopus-librnp-1.11.1-6.fc44
Fedora 44 Update: rust-sequoia-keystore-server-0.2.0-7.fc44
Fedora 44 Update: rust-podman-sequoia-0.3.2-2.fc44
Fedora 44 Update: rust-sequoia-sq-1.3.1-11.fc44
Fedora 44 Update: rust-sequoia-openpgp-2.3.0-1.fc44
Fedora 44 Update: rust-sequoia-sop-0.37.3-3.fc44
Fedora 44 Update: rust-sequoia-chameleon-gnupg-0.13.1-12.fc44
Fedora 44 Update: rust-sequoia-git-0.6.0-2.fc44
Fedora 44 Update: rust-rpm-sequoia-1.10.2-2.fc44
Fedora 44 Update: GitPython-3.1.50-1.fc44

[SECURITY] Fedora 43 Update: kernel-7.0.7-100.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-5e5a0f9621
2026-05-15 03:06:23.642331+00:00
--------------------------------------------------------------------------------

Name : kernel
Product : Fedora 43
Version : 7.0.7
Release : 100.fc43
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------
Update Information:

The 7.0.7 stable kernel update contains a number of important fixes across the
tree. It also patches up a vulnerable codepath for fragnesia that was not in the
original patches for 7.0.6
--------------------------------------------------------------------------------
ChangeLog:

* Thu May 14 2026 Justin M. Forbes [jforbes@fedoraproject.org] [7.0.7-0]
- net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim)
- Revert old fragnesia fixes in favor of more complete solution (Justin M. Forbes)
- Revert old fragnesia fixes in favor of more complete solution (Justin M. Forbes)
- Change version in Bugsfixed due to build (Justin M. Forbes)
- Linux v7.0.7
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-5e5a0f9621' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 43 Update: firefox-150.0.3-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-4542b2d7aa
2026-05-15 03:06:23.642326+00:00
--------------------------------------------------------------------------------

Name : firefox
Product : Fedora 43
Version : 150.0.3
Release : 1.fc43
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.

--------------------------------------------------------------------------------
Update Information:

New upstream release (150.0.3)
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 12 2026 Martin Stransky [stransky@redhat.com] - 150.0.3-1
- Update to latest upstream (150.0.3)
* Mon May 11 2026 Martin Stransky [stransky@redhat.com] - 150.0.2-1
- Update to latest upstream (150.0.2)
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-4542b2d7aa' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 43 Update: freerdp-3.26.0-4.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-dfde5fc92a
2026-05-15 03:06:23.642321+00:00
--------------------------------------------------------------------------------

Name : freerdp
Product : Fedora 43
Version : 3.26.0
Release : 4.fc43
URL : http://www.freerdp.com/
Summary : Free implementation of the Remote Desktop Protocol (RDP)
Description :
The xfreerdp & wlfreerdp Remote Desktop Protocol (RDP) clients from the FreeRDP
project.

xfreerdp & wlfreerdp can connect to RDP servers such as Microsoft Windows
machines, xrdp and VirtualBox.

--------------------------------------------------------------------------------
Update Information:

Update to 3.26.0
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 10 2026 Neal Gompa [ngompa@fedoraproject.org] - 2:3.26.0-4
- Enable WebAuthN/FIDO2 passthrough support
* Sun May 10 2026 Shawn W Dunn [sfalken@kalpadesktop.org] - 2:3.26.0-3
- Drop 0001-add-sso-mib-dependency-to-client-cmake.patch
* Sun May 10 2026 Shawn W Dunn [sfalken@kalpadesktop.org] - 2:3.26.0-2
- Add 0001-add-sso-mib-dependency-to-client-cmake.patch
* Thu May 7 2026 Ondrej Holy [oholy@redhat.com] - 2:3.26.0-1
- Update to 3.26.0
Resolves: rhbz#2467244
* Tue Apr 28 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 2:3.25.0-2
- Disable AOM AV1 support on RHEL
* Thu Apr 23 2026 Neal Gompa [ngompa@fedoraproject.org] - 2:3.25.0-1
- Update to 3.25.0 (CVE-2026-40254)
Resolves: rhbz#2461094
- Enable AV1 support
* Sat Apr 4 2026 Luca Boccassi [luca.boccassi@gmail.com] - 2:3.24.2-2
- Build with sso-mib support
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-dfde5fc92a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 43 Update: GitPython-3.1.50-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-ee7b1c75b6
2026-05-15 03:06:23.642303+00:00
--------------------------------------------------------------------------------

Name : GitPython
Product : Fedora 43
Version : 3.1.50
Release : 1.fc43
URL : https://github.com/gitpython-developers/GitPython
Summary : Python Git Library
Description :
GitPython is a python library used to interact with git repositories,
high-level like git-porcelain, or low-level like git-plumbing.

It provides abstractions of git objects for easy access of repository data, and
additionally allows you to access the git repository more directly using either
a pure python implementation, or the faster, but more resource intensive git
command implementation.

The object database implementation is optimized for handling large quantities
of objects and large datasets, which is achieved by using low-level structures
and data streaming.

--------------------------------------------------------------------------------
Update Information:

Update to 3.1.50; fixes CVE-2026-42215 / GHSA-mv93-w799-cj2w.
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 6 2026 Benjamin A. Beasley [code@musicinmybrain.net] - 3.1.50-1
- Update to 3.1.50; closes RHBZ#2466957 and fixes CVE-2026-42215
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2466957 - GitPython-3.1.50 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2466957
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-ee7b1c75b6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 43 Update: php-8.4.21-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-c4d1ca4f16
2026-05-15 03:06:23.642297+00:00
--------------------------------------------------------------------------------

Name : php
Product : Fedora 43
Version : 8.4.21
Release : 1.fc43
URL : http://www.php.net/
Summary : PHP scripting language for creating dynamic web sites
Description :
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.

--------------------------------------------------------------------------------
Update Information:

PHP version 8.4.21 (07 May 2026)
Core:
Fixed bug GH-19983 (GC assertion failure with fibers, generators and
destructors). (iliaal)
Fixed bug GH-21478 (Forward property operations to real instance for initialized
lazy proxies). (iliaal)
Fixed bug GH-21605 (Missing addref for Countable::count()). (ilutov)
Fixed bug GH-21699 (Assertion failure in shutdown_executor when resolving
self::/parent::/static:: callables if the error handler throws). (macoaure)
Fixed bug GH-21603 (Missing addref for __unset). (ilutov)
Fixed bug GH-21760 (Trait with class constant name conflict against enum case
causes SEGV). (Pratik Bhujel)
CLI:
Fixed bug GH-21754 (--rf command line option with a method triggers
ext/reflection deprecation warnings). (DanielEScherzer)
Curl:
Add support for brotli and zstd on Windows. (Shivam Mathur)
DOM:
Fixed GHSA-4jhr-8w89-j733 and GH-21566 (Dom\XMLDocument::C14N() emits duplicate
xmlns declarations after setAttributeNS()). (CVE-2026-7263) (David Carlier)
Fixed bug GH-21688 (segmentation fault on empty HTMLDocument). (David Carlier)
Upgrade to lexbor v2.7.0. (CVE-2026-29078, CVE-2026-29079) (ndossche, ilutov)
FPM:
Fixed GHSA-7qg2-v9fj-4mwv (XSS within status endpoint). (CVE-2026-6735) (Jakub
Zelenka)
Iconv:
Fixed bug GH-17399 (iconv memory leak on bailout). (iliaal)
MBString:
Fixed GHSA-wm6j-2649-pv75 (Null pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init()). (CVE-2026-7259) (vi3tL0u1s)
Fixed GHSA-74r9-qxhc-fx53 (Out-of-bounds access in mbfl_name2encoding_ex()).
(CVE-2026-6104) (ilutov)
Opcache:
Fixed bug GH-21158 (JIT: Assertion jit->ra[var].flags & (1