Fedora 41 Update: mingw-gdk-pixbuf-2.42.12-5.fc41
Fedora 41 Update: mingw-python3-3.11.13-2.fc41
Fedora 42 Update: cef-138.0.25^chromium138.0.7204.157-1.fc42
Fedora 42 Update: mingw-python3-3.11.13-2.fc42
Fedora 42 Update: mingw-gdk-pixbuf-2.42.12-5.fc42
Fedora 42 Update: dpkg-1.22.20-1.fc42
[SECURITY] Fedora 41 Update: mingw-gdk-pixbuf-2.42.12-5.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-c63237c48f
2025-07-22 01:20:36.980751+00:00
--------------------------------------------------------------------------------
Name : mingw-gdk-pixbuf
Product : Fedora 41
Version : 2.42.12
Release : 5.fc41
URL : http://www.gtk.org
Summary : MinGW Windows GDK Pixbuf library
Description :
MinGW Windows GDK Pixbuf library.
--------------------------------------------------------------------------------
Update Information:
Backport fix for CVE-2025-7345.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 13 2025 Sandro Mani [manisandro@gmail.com] - 2.42.12-5
- Backport fix for CVE-2025-7345
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2377157 - CVE-2025-7345 mingw-gdk-pixbuf: Heap???buffer???overflow in gdk???pixbuf [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2377157
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-c63237c48f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
[SECURITY] Fedora 41 Update: mingw-python3-3.11.13-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-1941db8ecb
2025-07-22 01:20:36.980755+00:00
--------------------------------------------------------------------------------
Name : mingw-python3
Product : Fedora 41
Version : 3.11.13
Release : 2.fc41
URL : https://www.python.org/
Summary : MinGW Windows python3
Description :
MinGW Windows python3
--------------------------------------------------------------------------------
Update Information:
Backport fix for CVE-2025-6069.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 13 2025 Sandro Mani [manisandro@gmail.com] - 3.11.13-2
- Backport fix for CVE-2025-6069
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2373236 - CVE-2025-6069 mingw-python3: Python HTMLParser quadratic complexity [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2373236
[ 2 ] Bug #2373246 - CVE-2025-6069 mingw-python3: Python HTMLParser quadratic complexity [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2373246
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-1941db8ecb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: cef-138.0.25^chromium138.0.7204.157-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-828bc3d3f5
2025-07-22 01:10:39.644292+00:00
--------------------------------------------------------------------------------
Name : cef
Product : Fedora 42
Version : 138.0.25^chromium138.0.7204.157
Release : 1.fc42
URL : https://bitbucket.org/chromiumembedded/cef
Summary : Chromium Embedded Framework
Description :
CEF is an embeddable build of Chromium, powered by WebKit (Blink).
--------------------------------------------------------------------------------
Update Information:
Update to cef-138.0.25+g251e1c1/chromium138.0.7204.157 (rhbz#2380429)
Update to cef-138.0.21+g54811fe (rhbz#2379500)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jul 17 2025 Asahi Lina [lina@asahilina.net] - 138.0.25^chromium138.0.7204.157-1
- Update to cef-138.0.25+g251e1c1 (rhbz#2380429)
* Thu Jul 17 2025 Than Ngo [than@redhat.com] - 138.0.21^chromium138.0.7204.157-1
- Update to 138.0.7204.157
- * CVE-2025-7656: Integer overflow in V8
- * CVE-2025-7657: Use after free in WebRTC
- * CVE-2025-6558: Incorrect validation of untrusted input in ANGLE and GPU
* Sat Jul 12 2025 Asahi Lina [lina@asahilina.net] - 138.0.21^chromium138.0.7204.100-1
- Update to cef-138.0.21+g54811fe (rhbz#2379500)
- Add cherry-pick.sh convenience script
* Sat Jul 12 2025 Than Ngo [than@redhat.com] - 138.0.15^chromium138.0.7204.100-1
- Update to 138.0.7204.100
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2379500 - cef-138.0.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2379500
[ 2 ] Bug #2380429 - cef-138.0.25 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2380429
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-828bc3d3f5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: mingw-python3-3.11.13-2.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-c871432bf3
2025-07-22 01:10:39.644228+00:00
--------------------------------------------------------------------------------
Name : mingw-python3
Product : Fedora 42
Version : 3.11.13
Release : 2.fc42
URL : https://www.python.org/
Summary : MinGW Windows python3
Description :
MinGW Windows python3
--------------------------------------------------------------------------------
Update Information:
Backport fix for CVE-2025-6069.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 13 2025 Sandro Mani [manisandro@gmail.com] - 3.11.13-2
- Backport fix for CVE-2025-6069
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2373236 - CVE-2025-6069 mingw-python3: Python HTMLParser quadratic complexity [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2373236
[ 2 ] Bug #2373246 - CVE-2025-6069 mingw-python3: Python HTMLParser quadratic complexity [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2373246
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-c871432bf3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 42 Update: mingw-gdk-pixbuf-2.42.12-5.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-137a7091c1
2025-07-22 01:10:39.644226+00:00
--------------------------------------------------------------------------------
Name : mingw-gdk-pixbuf
Product : Fedora 42
Version : 2.42.12
Release : 5.fc42
URL : http://www.gtk.org
Summary : MinGW Windows GDK Pixbuf library
Description :
MinGW Windows GDK Pixbuf library.
--------------------------------------------------------------------------------
Update Information:
Backport fix for CVE-2025-7345.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 13 2025 Sandro Mani [manisandro@gmail.com] - 2.42.12-5
- Backport fix for CVE-2025-7345
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2377159 - CVE-2025-7345 mingw-gdk-pixbuf: Heap???buffer???overflow in gdk???pixbuf [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2377159
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-137a7091c1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
[SECURITY] Fedora 42 Update: dpkg-1.22.20-1.fc42
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-585ba94c06
2025-07-22 01:10:39.644188+00:00
--------------------------------------------------------------------------------
Name : dpkg
Product : Fedora 42
Version : 1.22.20
Release : 1.fc42
URL : https://tracker.debian.org/pkg/dpkg
Summary : Package maintenance system for Debian Linux
Description :
This package provides the low-level infrastructure for handling the
installation and removal of Debian software packages.
This package contains the tools (including dpkg-source) required to unpack,
build and upload Debian source packages.
This package also contains the programs dpkg which used to handle the
installation and removal of packages on a Debian system.
This package also contains dselect, an interface for managing the installation
and removal of packages on the system.
dpkg and dselect will certainly be non-functional on a rpm-based system because
packages dependencies will likely be unmet.
--------------------------------------------------------------------------------
Update Information:
Update to 1.22.20.
General cleanup.
Fix CVE-2025-6297.
Major clean up.
Enable all tests.
Trim changelog.
Adjust Requires and BuildRequires.
Update configure options.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 26 2025 Simone Caronni [negativo17@gmail.com] - 1.22.20-1
- Update to 1.22.20
* Thu Jun 26 2025 Simone Caronni [negativo17@gmail.com] - 1.22.15-4
- Enable all tests.
- Trim changelog.
* Thu Jun 26 2025 Simone Caronni [negativo17@gmail.com] - 1.22.15-3
- Clean up SPEC file.
- Adjust Requires and BuildRequires.
- Update configure options.
- Fix all tests except one.
* Mon Mar 31 2025 Tim Landscheidt - 1.22.15-2
- Remove obsolete requirement for %post scriptlet
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2350593 - dpkg-1.22.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2350593
[ 2 ] Bug #2375783 - CVE-2025-6297 dpkg: dpkg excessive disk usage [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2375783
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-585ba94c06' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
