Fedora Linux 9407 Published by

Fedora distributed a batch of security and stability updates for both Fedora 43 and Fedora 44. These advisories address multiple Common Vulnerabilities and Exposures, patching memory corruption flaws in FreeRDP and cache poisoning vulnerabilities across PowerDNS Recursor and Authoritative Server. Buildah and Podman received patches for CVE-2026-44517, while 7-Zip and OpenVPN updated to their latest upstream releases to improve compression and tunneling capabilities.

Fedora 43 Update: openvpn-2.6.21-1.fc43
Fedora 43 Update: 7zip-26.02-1.fc43
Fedora 43 Update: pdns-recursor-5.2.11-1.fc43
Fedora 43 Update: pdns-5.0.6-1.fc43
Fedora 43 Update: buildah-1.43.2-1.fc43
Fedora 43 Update: podman-5.8.3-1.fc43
Fedora 43 Update: freerdp-3.27.1-1.fc43
Fedora 44 Update: openvpn-2.7.5-1.fc44
Fedora 44 Update: pdns-recursor-5.4.3-1.fc44
Fedora 44 Update: pdns-5.0.6-1.fc44
Fedora 44 Update: openqa-5^20260604git6376095-3.fc44
Fedora 44 Update: os-autoinst-5^20260601git6ee8da2-1.fc44
Fedora 44 Update: leptonica-1.87.0-4.fc44




[SECURITY] Fedora 43 Update: openvpn-2.6.21-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-89f19dcfa6
2026-07-04 01:06:18.979287+00:00
--------------------------------------------------------------------------------

Name : openvpn
Product : Fedora 43
Version : 2.6.21
Release : 1.fc43
URL : https://community.openvpn.net/
Summary : A full-featured TLS VPN solution
Description :
OpenVPN is a robust and highly flexible tunneling application that uses all
of the encryption, authentication, and certification features of the
OpenSSL library to securely tunnel IP networks over a single UDP or TCP
port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library
for compression.

--------------------------------------------------------------------------------
Update Information:

Update to upstream 2.6.21 release
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 1 2026 Frank Lichtenheld [frank@lichtenheld.com] - 2.6.21-1
- Update to upstream OpenVPN 2.6.21
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-89f19dcfa6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: 7zip-26.02-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-7eaa63bea6
2026-07-04 01:06:18.979289+00:00
--------------------------------------------------------------------------------

Name : 7zip
Product : Fedora 43
Version : 26.02
Release : 1.fc43
URL : https://7-zip.org
Summary : A file archiver
Description :
7-Zip is a file archiver with a high compression ratio. The main features
of 7-Zip are:

* High compression ratio in 7z format with LZMA and LZMA2 compression
* Supported formats:
* Packing / unpacking: 7z, XZ, BZIP2, GZIP, TAR, ZIP and WIM
* Unpacking only: AR, ARJ, CAB, CHM, CPIO, CramFS, DMG, EXT, FAT,
GPT, HFS, IHEX, ISO, LZH, LZMA, MBR, MSI, NSIS, NTFS, QCOW2,
RPM, SquashFS, UDF, UEFI, VDI, VHD, VMDK, WIM, XAR and Z.
* For ZIP and GZIP formats, 7-Zip provides a compression ratio that is
2-10 % better than the ratio provided by PKZip and WinZip
* Strong AES-256 encryption in 7z and ZIP formats
* Powerful command line version

--------------------------------------------------------------------------------
Update Information:

7-zip 26.02
Some bugs and vulnerabilities were fixed.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 1 2026 Michel Lind [salimma@fedoraproject.org] - 26.02-1
- Update to version 26.02; Resolves: rhbz#2493347
* Wed Jul 1 2026 Michel Lind [salimma@fedoraproject.org] - 26.01-2
- Load 7z.so from a fixed libexec path instead of deriving it from argv[0]
- Resolves: rhbz#2491337
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2491337 - 7-zip under the root account cannot extract RAR archives
https://bugzilla.redhat.com/show_bug.cgi?id=2491337
[ 2 ] Bug #2493347 - 7zip-26.02 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2493347
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-7eaa63bea6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: pdns-recursor-5.2.11-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-34cca3d390
2026-07-04 01:06:18.979284+00:00
--------------------------------------------------------------------------------

Name : pdns-recursor
Product : Fedora 43
Version : 5.2.11
Release : 1.fc43
URL : https://powerdns.com
Summary : Modern, advanced and high performance recursing/non authoritative name server
Description :
PowerDNS Recursor is a non authoritative/recursing DNS server. Use this
package if you need a dns cache for your network.

--------------------------------------------------------------------------------
Update Information:

update to latest upstream release to fix CVEs
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 25 2026 Filipe Rosset [filiperosset@fedoraproject.org] - 5.2.11-1
- update to 5.2.11 fixes rhbz#2492868
- a bunch of other bugs were fixed and will be backported to all supported
Fedora / EPEL versions
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2438157 - CVE-2025-59023 pdns-recursor: crafted delegations or IP fragments can poison cached delegations [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438157
[ 2 ] Bug #2438176 - CVE-2025-59024 pdns-recursor: crafted delegations or IP fragments can poison cached delegations [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438176
[ 3 ] Bug #2438180 - CVE-2026-0398 pdns-recursor: crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438180
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-34cca3d390' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: pdns-5.0.6-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-5ce1370aca
2026-07-04 01:06:18.979270+00:00
--------------------------------------------------------------------------------

Name : pdns
Product : Fedora 43
Version : 5.0.6
Release : 1.fc43
URL : http://powerdns.com
Summary : A modern, advanced and high performance authoritative-only name server
Description :
The PowerDNS Nameserver is a modern, advanced and high performance
authoritative-only name server. It is written from scratch and conforms
to all relevant DNS standards documents.
Furthermore, PowerDNS interfaces with almost any database.

--------------------------------------------------------------------------------
Update Information:

Update to 5.0.6
CVE-2026-42005
Security Advisory: https://doc.powerdns.com/authoritative/security-
advisories/powerdns-advisory-2026-07.html
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 25 2026 Morten Stevens [mstevens@fedoraproject.org] - 5.0.6-1
- Update to 5.0.6
* Fri Jun 12 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 5.0.5-3
- Rebuilt for openssl 4.0
* Fri May 29 2026 Miroslav Suchy [msuchy@redhat.com] - 5.0.5-2
- rebuild for https://fedoraproject.org/wiki/Changes/Protobuf_5.x/6.x
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-5ce1370aca' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: buildah-1.43.2-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-be3238ba3e
2026-07-04 01:06:18.979232+00:00
--------------------------------------------------------------------------------

Name : buildah
Product : Fedora 43
Version : 1.43.2
Release : 1.fc43
URL : https://buildah.io
Summary : A command line tool used for creating OCI Images
Description :
The buildah package provides a command line tool which can be used to
* create a working container from scratch
or
* create a working container from an image as a starting point
* mount/umount a working container's root file system for manipulation
* save container's root file system layer to create a new image
* delete a working container or an image

--------------------------------------------------------------------------------
Update Information:

Update to buildah 1.43.2 and podman 5.8.3
Security fix for CVE-2026-44517
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 8 2026 Packit [hello@packit.dev] - 2:1.43.2-1
- Update to 1.43.2 upstream release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-be3238ba3e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: podman-5.8.3-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-be3238ba3e
2026-07-04 01:06:18.979232+00:00
--------------------------------------------------------------------------------

Name : podman
Product : Fedora 43
Version : 5.8.3
Release : 1.fc43
URL : https://podman.io/
Summary : Manage Pods, Containers and Container Images
Description :
podman (Pod Manager) is a fully featured container engine that is a simple
daemonless tool. podman provides a Docker-CLI comparable command line that
eases the transition from other container engines and allows the management of
pods, containers and images. Simply put: alias docker=podman.
Most podman commands can be run as a regular user, without requiring
additional privileges.

podman uses Buildah(1) internally to create container images.
Both tools share image (not container) storage, hence each can use or
manipulate images (but not containers) created by the other.

--------------------------------------------------------------------------------
Update Information:

Update to buildah 1.43.2 and podman 5.8.3
Security fix for CVE-2026-44517
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 12 2026 Packit [hello@packit.dev] - 5:5.8.3-1
- Update to 5.8.3 upstream release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-be3238ba3e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 43 Update: freerdp-3.27.1-1.fc43


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-78a12ffec8
2026-07-04 01:06:18.979228+00:00
--------------------------------------------------------------------------------

Name : freerdp
Product : Fedora 43
Version : 3.27.1
Release : 1.fc43
URL : http://www.freerdp.com/
Summary : Free implementation of the Remote Desktop Protocol (RDP)
Description :
The xfreerdp & wlfreerdp Remote Desktop Protocol (RDP) clients from the FreeRDP
project.

xfreerdp & wlfreerdp can connect to RDP servers such as Microsoft Windows
machines, xrdp and VirtualBox.

--------------------------------------------------------------------------------
Update Information:

Update to 3.27.1
It fixes CVE-2026-55191, CVE-2026-55192, CVE-2026-55193, CVE-2026-55194,
CVE-2026-55648 and CVE-2026-55827.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 18 2026 Ondrej Holy [oholy@redhat.com] - 2:3.27.1-1
- Update to 3.27.1 (CVE-2026-55191, CVE-2026-55192, CVE-2026-55193,
CVE-2026-55194, CVE-2026-55648, CVE-2026-55827)
Resolves: rhbz#2488900
* Fri Jun 12 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 2:3.26.0-8
- Rebuilt for openssl 4.0
* Mon Jun 8 2026 Franti??ek Zatloukal [fzatlouk@redhat.com] - 2:3.26.0-7
- Rebuilt for icu 78.3
* Thu Jun 4 2026 Ondrej Holy [oholy@redhat.com] - 2:3.26.0-6
- Enable uriparser support on RHEL
* Tue May 26 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 2:3.26.0-5
- Drop multilib-rpm-config usage on RHEL
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-78a12ffec8' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------



[SECURITY] Fedora 44 Update: openvpn-2.7.5-1.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-117dbc031b
2026-07-04 00:49:17.194881+00:00
--------------------------------------------------------------------------------

Name : openvpn
Product : Fedora 44
Version : 2.7.5
Release : 1.fc44
URL : https://community.openvpn.net/
Summary : A full-featured TLS VPN solution
Description :
OpenVPN is a robust and highly flexible tunneling application that uses all
of the encryption, authentication, and certification features of the
OpenSSL library to securely tunnel IP networks over a single UDP or TCP
port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library
for compression.

--------------------------------------------------------------------------------
Update Information:

Update to upstream 2.7.5 release
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 1 2026 Frank Lichtenheld [frank@lichtenheld.com] - 2.7.5-1
- Update to upstream 2.7.5 release
* Fri Jun 12 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 2.7.4-2
- Rebuilt for openssl 4.0
* Thu Apr 30 2026 Frank Lichtenheld [frank@lichtenheld.com] - 2.7.4
- Update to upstream 2.7.4 release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-117dbc031b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 44 Update: pdns-recursor-5.4.3-1.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-088b60c071
2026-07-04 00:49:17.194874+00:00
--------------------------------------------------------------------------------

Name : pdns-recursor
Product : Fedora 44
Version : 5.4.3
Release : 1.fc44
URL : https://powerdns.com
Summary : Modern, advanced and high performance recursing/non authoritative name server
Description :
PowerDNS Recursor is a non authoritative/recursing DNS server. Use this
package if you need a dns cache for your network.

--------------------------------------------------------------------------------
Update Information:

update to latest upstream release to fix CVEs
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 25 2026 Filipe Rosset [filiperosset@fedoraproject.org] - 5.4.3-1
- update to 5.4.3 fixes rhbz#2492868
- a bunch of other bugs were fixed and will be backported to all supported
Fedora / EPEL versions
* Sun Jun 14 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 5.4.2-4
- Drop unused openssl-devel-engine dependency
* Fri Jun 12 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 5.4.2-3
- Rebuilt for openssl 4.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2438157 - CVE-2025-59023 pdns-recursor: crafted delegations or IP fragments can poison cached delegations [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438157
[ 2 ] Bug #2438176 - CVE-2025-59024 pdns-recursor: crafted delegations or IP fragments can poison cached delegations [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438176
[ 3 ] Bug #2438180 - CVE-2026-0398 pdns-recursor: crafted zones can lead to increased resource usage and crafted CNAME chains can lead to cache poisoning [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438180
[ 4 ] Bug #2438184 - CVE-2026-24027 pdns-recursor: crafted zones can lead to increased incoming network traffic [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2438184
[ 5 ] Bug #2460825 - CVE-2026-33600 pdns-recursor: NULL pointer dereference in RPZ transfer [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2460825
[ 6 ] Bug #2460826 - CVE-2026-33261 pdns-recursor: NULL pointer access in aggressive NSEC(3) cache [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2460826
[ 7 ] Bug #2460827 - CVE-2026-33259 pdns-recursor: concurrent modification of RPZ data can lead to denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2460827
[ 8 ] Bug #2460828 - CVE-2026-33258 pdns-recursor: crafted zones can cause increased resource usage [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2460828
[ 9 ] Bug #2460829 - CVE-2026-33601 pdns-recursor: insufficient validation of ZONEMD record [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2460829
[ 10 ] Bug #2493667 - CVE-2026-33612 pdns-recursor: ZoneToCache can poison the cache [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493667
[ 11 ] Bug #2493668 - CVE-2026-40012 pdns-recursor: information about ECS zero scoped answers might leak to clients that use a specific ECS [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493668
[ 12 ] Bug #2493669 - CVE-2026-42388 pdns-recursor: missing input validation for catalog zones [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493669
[ 13 ] Bug #2493670 - CVE-2026-42387 pdns-recursor: insufficient input validation in ZoneToCache [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493670
[ 14 ] Bug #2493671 - CVE-2026-42390 pdns-recursor: ZONEMD validation can be bypassed [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493671
[ 15 ] Bug #2493672 - CVE-2026-52690 pdns-recursor: spoofed answers can mark an authoritative non-EDNS capable [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2493672
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-088b60c071' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 44 Update: pdns-5.0.6-1.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-f6ac0db764
2026-07-04 00:49:17.194856+00:00
--------------------------------------------------------------------------------

Name : pdns
Product : Fedora 44
Version : 5.0.6
Release : 1.fc44
URL : http://powerdns.com
Summary : A modern, advanced and high performance authoritative-only name server
Description :
The PowerDNS Nameserver is a modern, advanced and high performance
authoritative-only name server. It is written from scratch and conforms
to all relevant DNS standards documents.
Furthermore, PowerDNS interfaces with almost any database.

--------------------------------------------------------------------------------
Update Information:

Update to 5.0.6
CVE-2026-42005
Security Advisory: https://doc.powerdns.com/authoritative/security-
advisories/powerdns-advisory-2026-07.html
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 25 2026 Morten Stevens [mstevens@fedoraproject.org] - 5.0.6-1
- Update to 5.0.6
* Fri Jun 12 2026 Yaakov Selkowitz [yselkowi@redhat.com] - 5.0.5-3
- Rebuilt for openssl 4.0
* Fri May 29 2026 Miroslav Suchy [msuchy@redhat.com] - 5.0.5-2
- rebuild for https://fedoraproject.org/wiki/Changes/Protobuf_5.x/6.x
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-f6ac0db764' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 44 Update: openqa-5^20260604git6376095-3.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-a72f110dcd
2026-07-04 00:49:17.194797+00:00
--------------------------------------------------------------------------------

Name : openqa
Product : Fedora 44
Version : 5^20260604git6376095
Release : 3.fc44
URL : http://os-autoinst.github.io/openQA/
Summary : Framework for automated system-level testing (web-frontend, scheduler and tools)
Description :
openQA is a testing framework that allows you to test GUI applications on one
hand and bootloader and kernel on the other. In both cases, it is difficult to
script tests and verify the output. Output can be a popup window or it can be
an error in early boot even before init is executed.

openQA is an automated test tool that makes it possible to test the whole
installation process of an operating system. It uses virtual machines to
reproduce the process, check the output (both serial console and screen) in
every step and send the necessary keystrokes and commands to proceed to the
next. openQA can check whether the system can be installed, whether it works
properly in 'live' mode, whether applications work or whether the system
responds as expected to different installation options and commands.

Even more importantly, openQA can run several combinations of tests for every
revision of the operating system, reporting the errors detected for each
combination of hardware configuration, installation options and variant of the
operating system.

--------------------------------------------------------------------------------
Update Information:

This update includes new upstream snapshots of openQA and os-autoinst, with the
usual mix of fixes and improvements. See upstream changelogs for details.
For leptonica, this update removes an incorrect workaround for a GCC compilation
issue, since GCC is now fixed. This should resolve incomplete processing of
files on aarch64. Without this fix, os-autoinst's test suite fails.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 18 2026 Adam Williamson [awilliam@redhat.com] - 5^20260604git6376095-3
- Fix a couple of incorrect -devel package deps
* Mon Jun 15 2026 Zbigniew J??drzejewski-Szmek [zbyszek@in.waw.pl] - 5^20260604git6376095-2
- Drop call to %sysusers_create_compat
* Fri Jun 5 2026 Adam Williamson [awilliam@redhat.com] - 5^20260604git6376095-1
- Bump to latest git, re-sync spec, backport a couple of patches
* Wed Mar 11 2026 Adam Williamson [awilliam@redhat.com] - 5^20260126git19189f0-3
- Drop shfmt from -devel dependencies (it was retired)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2435305 - tesseract tests fail on Rawhide on aarch64 due to leptonica issue
https://bugzilla.redhat.com/show_bug.cgi?id=2435305
[ 2 ] Bug #2454041 - CVE-2026-4800 openqa: lodash: Arbitrary code execution via untrusted input in template imports [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2454041
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-a72f110dcd' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------



[SECURITY] Fedora 44 Update: os-autoinst-5^20260601git6ee8da2-1.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-a72f110dcd
2026-07-04 00:49:17.194797+00:00
--------------------------------------------------------------------------------

Name : os-autoinst
Product : Fedora 44
Version : 5^20260601git6ee8da2
Release : 1.fc44
URL : https://github.com/os-autoinst/os-autoinst
Summary : OS-level test automation
Description :
The OS-autoinst project aims at providing a means to run fully
automated tests. Especially to run tests of basic and low-level
operating system components such as bootloader, kernel, installer and
upgrade, which can not easily and safely be tested with other
automated testing frameworks. However, it can just as well be used to
test applications on top of a newly installed OS.

--------------------------------------------------------------------------------
Update Information:

This update includes new upstream snapshots of openQA and os-autoinst, with the
usual mix of fixes and improvements. See upstream changelogs for details.
For leptonica, this update removes an incorrect workaround for a GCC compilation
issue, since GCC is now fixed. This should resolve incomplete processing of
files on aarch64. Without this fix, os-autoinst's test suite fails.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 1 2026 Adam Williamson [awilliam@redhat.com] - 5^20260601git6ee8da2-1
- Update snapshot again, backport PR #2952 to fix serial console bug
* Fri May 29 2026 Adam Williamson [awilliam@redhat.com] - 5^20260521git11296ca-1
- Update to recent snapshot, re-sync with upstream spec
* Thu May 21 2026 Adam Williamson [awilliam@redhat.com] - 5^20260123git72cabd0-8
- Add a missing 'diff from SUSE' note
* Wed Mar 11 2026 Adam Williamson [awilliam@redhat.com] - 5^20260123git72cabd0-7
- Drop shfmt from -devel dependencies (it was retired)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2435305 - tesseract tests fail on Rawhide on aarch64 due to leptonica issue
https://bugzilla.redhat.com/show_bug.cgi?id=2435305
[ 2 ] Bug #2454041 - CVE-2026-4800 openqa: lodash: Arbitrary code execution via untrusted input in template imports [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2454041
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-a72f110dcd' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new



[SECURITY] Fedora 44 Update: leptonica-1.87.0-4.fc44


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-a72f110dcd
2026-07-04 00:49:17.194797+00:00
--------------------------------------------------------------------------------

Name : leptonica
Product : Fedora 44
Version : 1.87.0
Release : 4.fc44
URL : https://github.com/danbloomberg/leptonica
Summary : C library for efficient image processing and image analysis operations
Description :
The library supports many operations that are useful on
* Document images
* Natural images

Fundamental image processing and image analysis operations
* Rasterop (aka bitblt)
* Affine transforms (scaling, translation, rotation, shear)
on images of arbitrary pixel depth
* Projective and bi-linear transforms
* Binary and gray scale morphology, rank order filters, and
convolution
* Seed-fill and connected components
* Image transformations with changes in pixel depth, both at
the same scale and with scale change
* Pixelwise masking, blending, enhancement, arithmetic ops,
etc.

--------------------------------------------------------------------------------
Update Information:

This update includes new upstream snapshots of openQA and os-autoinst, with the
usual mix of fixes and improvements. See upstream changelogs for details.
For leptonica, this update removes an incorrect workaround for a GCC compilation
issue, since GCC is now fixed. This should resolve incomplete processing of
files on aarch64. Without this fix, os-autoinst's test suite fails.
--------------------------------------------------------------------------------
ChangeLog:

* Thu May 21 2026 Adam Williamson [awilliam@redhat.com] - 1.87.0-4
- Drop the workaround as GCC should be fixed now
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2435305 - tesseract tests fail on Rawhide on aarch64 due to leptonica issue
https://bugzilla.redhat.com/show_bug.cgi?id=2435305
[ 2 ] Bug #2454041 - CVE-2026-4800 openqa: lodash: Arbitrary code execution via untrusted input in template imports [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2454041
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-a72f110dcd' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new