Fedora has released a batch of critical security updates for both Fedora 43 and Fedora 44 that target several essential system packages. The patch rollout includes version upgrades for objfw, its MinGW variant, tailscale, and sentencepiece to address multiple vulnerabilities and resolve lingering stability issues. Notable fixes include patches for CVE-2026-34165 and CVE-2026-33762 in tailscale alongside a memory access flaw in sentencepiece that could allow arbitrary code execution. Administrators should apply these changes immediately by running the appropriate dnf upgrade commands tied to each specific advisory number.

Fedora 43 Update: objfw-1.5.5-1.fc43
Fedora 43 Update: mingw-objfw-1.5.5-1.fc43
Fedora 44 Update: mingw-objfw-1.5.5-1.fc44
Fedora 44 Update: objfw-1.5.5-1.fc44
Fedora 44 Update: tailscale-1.98.4-1.fc44
Fedora 44 Update: sentencepiece-0.2.1-1.fc44

[SECURITY] Fedora 43 Update: objfw-1.5.5-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-d1580bc2d5
2026-06-09 01:26:53.024687+00:00
--------------------------------------------------------------------------------

Name : objfw
Product : Fedora 43
Version : 1.5.5
Release : 1.fc43
URL : https://objfw.nil.im
Summary : Portable, lightweight framework for the Objective-C language
Description :
ObjFW is a portable, lightweight framework for the Objective-C language. It
enables you to write an application in Objective-C that will run on any
platform supported by ObjFW without having to worry about differences between
operating systems or various frameworks you would otherwise need if you want to
be portable.

It supports all modern Objective-C features when using Clang, but is also
compatible with GCC ??? 4.6 to allow maximum portability.

ObjFW also comes with its own lightweight and extremely fast Objective-C
runtime, which in real world use cases was found to be significantly faster
than both GNU's and Apple's runtime.

--------------------------------------------------------------------------------
Update Information:

Update to 1.5.5, containing many bug fixes, some also security related.
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 31 2026 Jonathan Schleifer [js@fedoraproject.org] - 1.5.5-1
- Update to 1.5.5
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-d1580bc2d5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 43 Update: mingw-objfw-1.5.5-1.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-de23fedf3e
2026-06-09 01:26:53.024690+00:00
--------------------------------------------------------------------------------

Name : mingw-objfw
Product : Fedora 43
Version : 1.5.5
Release : 1.fc43
URL : https://objfw.nil.im
Summary : MinGW port of ObjFW
Description :
ObjFW is a portable, lightweight framework for the Objective-C language. It
enables you to write an application in Objective-C that will run on any
platform supported by ObjFW without having to worry about differences between
operating systems or various frameworks you would otherwise need if you want to
be portable.

It supports all modern Objective-C features when using Clang, but is also
compatible with GCC ??? 4.6 to allow maximum portability.

ObjFW also comes with its own lightweight and extremely fast Objective-C
runtime, which in real world use cases was found to be significantly faster
than both GNU's and Apple's runtime.

--------------------------------------------------------------------------------
Update Information:

Update to 1.5.5, containing many bug fixes, some also security related.
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 31 2026 Jonathan Schleifer [js@fedoraproject.org] - 1.5.5-1
- Update to 1.5.5
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-de23fedf3e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 44 Update: mingw-objfw-1.5.5-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-2aa17af701
2026-06-09 01:21:40.783752+00:00
--------------------------------------------------------------------------------

Name : mingw-objfw
Product : Fedora 44
Version : 1.5.5
Release : 1.fc44
URL : https://objfw.nil.im
Summary : MinGW port of ObjFW
Description :
ObjFW is a portable, lightweight framework for the Objective-C language. It
enables you to write an application in Objective-C that will run on any
platform supported by ObjFW without having to worry about differences between
operating systems or various frameworks you would otherwise need if you want to
be portable.

It supports all modern Objective-C features when using Clang, but is also
compatible with GCC ??? 4.6 to allow maximum portability.

ObjFW also comes with its own lightweight and extremely fast Objective-C
runtime, which in real world use cases was found to be significantly faster
than both GNU's and Apple's runtime.

--------------------------------------------------------------------------------
Update Information:

Update to 1.5.5, containing many bug fixes, some also security related.
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 31 2026 Jonathan Schleifer [js@fedoraproject.org] - 1.5.5-1
- Update to 1.5.5
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-2aa17af701' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 44 Update: objfw-1.5.5-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-729e540d74
2026-06-09 01:21:40.783749+00:00
--------------------------------------------------------------------------------

Name : objfw
Product : Fedora 44
Version : 1.5.5
Release : 1.fc44
URL : https://objfw.nil.im
Summary : Portable, lightweight framework for the Objective-C language
Description :
ObjFW is a portable, lightweight framework for the Objective-C language. It
enables you to write an application in Objective-C that will run on any
platform supported by ObjFW without having to worry about differences between
operating systems or various frameworks you would otherwise need if you want to
be portable.

It supports all modern Objective-C features when using Clang, but is also
compatible with GCC ??? 4.6 to allow maximum portability.

ObjFW also comes with its own lightweight and extremely fast Objective-C
runtime, which in real world use cases was found to be significantly faster
than both GNU's and Apple's runtime.

--------------------------------------------------------------------------------
Update Information:

Update to 1.5.5, containing many bug fixes, some also security related.
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 31 2026 Jonathan Schleifer [js@fedoraproject.org] - 1.5.5-1
- Update to 1.5.5
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-729e540d74' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 44 Update: tailscale-1.98.4-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-07897c0238
2026-06-09 01:21:40.783737+00:00
--------------------------------------------------------------------------------

Name : tailscale
Product : Fedora 44
Version : 1.98.4
Release : 1.fc44
URL : https://github.com/tailscale/tailscale
Summary : The easiest, most secure way to use WireGuard and 2FA
Description :
The easiest, most secure way to use WireGuard and 2FA.

--------------------------------------------------------------------------------
Update Information:

update to 1.98.4
Allow nftables to satisfy firewall dependency in lieu of iptables rhbz#2453924
Fix 45s timeout on shutdowns in certain cases rhbz#2440864
Fixes CVE-2026-34165 rhbz#2454571
Fixes CVE-2026-33762 rhbz#2454572
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 31 2026 Jonathan Wright [jonathan@almalinux.org] - 1.98.4-1
- update to 1.98.4
- Allow nftables to satisfy firewall dependency in lieu of iptables rhbz#2453924
- Fix 45s timeout on shutdowns in certain cases rhbz#2440864
- Fixes CVE-2026-34165 rhbz#2454571
- Fixes CVE-2026-33762 rhbz#2454572
* Sun May 31 2026 Jonathan Wright [jonathan@almalinux.org] - 1.98.3-1
- update to 1.98.3 rhbz#2448765
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2440864 - tailscale causing reboot to delay by 45 seconds as service shutdown times out
https://bugzilla.redhat.com/show_bug.cgi?id=2440864
[ 2 ] Bug #2448765 - tailscale-1.98.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2448765
[ 3 ] Bug #2453924 - drop hard dependency on iptables from tailscale
https://bugzilla.redhat.com/show_bug.cgi?id=2453924
[ 4 ] Bug #2454571 - CVE-2026-34165 tailscale: go-git: Denial of Service via crafted .idx file [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2454571
[ 5 ] Bug #2454572 - CVE-2026-33762 tailscale: go-git: Denial of Service via crafted Git index file [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2454572
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-07897c0238' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 44 Update: sentencepiece-0.2.1-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-314504fd18
2026-06-09 01:21:40.783727+00:00
--------------------------------------------------------------------------------

Name : sentencepiece
Product : Fedora 44
Version : 0.2.1
Release : 1.fc44
URL : https://github.com/google/sentencepiece
Summary : An unsupervised text tokenizer for Neural Network-based text generation
Description :
The SentencePiece is an unsupervised text tokenizer for Neural Network-based
text generation.
It is an unsupervised text tokenizer and detokenizer mainly for
Neural Network-based text generation systems where the vocabulary size is
predetermined prior to the neural model training.
SentencePiece implements subword units and unigram language model with the
extension of direct training from raw sentences.
SentencePiece allows us to make a purely end-to-end system that does not
depend on language-specific pre/post-processing.

--------------------------------------------------------------------------------
Update Information:

Update to 0.2.1
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 19 2026 Peter Robinson [pbrobinson@gmail.com] - 0.2.1-1
- Update to 0.2.1
- Fixes CVE-2026-1260 (rhbz#2432139 rhbz#2432139)
- Minor package updates for new rev
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2432139 - CVE-2026-1260 sentencepiece: Sentencepiece: Invalid memory access leading to potential arbitrary code execution via a crafted model file. [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2432139
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-314504fd18' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new