Fedora has pushed out a comprehensive security update cycle that impacts both version forty three and version forty four of the distribution. Administrators need to patch Thunderbird, Firefox, WebKitGTK, Rust, and libinput to close critical holes like local privilege escalation vectors and various rendering bugs. The release notes highlight performance tweaks and new language features alongside those urgent fixes. You can install everything right away by running a simple dnf upgrade command through your terminal interface.

Fedora 43 Update: thunderbird-149.0.1-3.fc43
Fedora 44 Update: firefox-151.0.3-1.fc44
Fedora 44 Update: webkitgtk-2.52.4-1.fc44
Fedora 44 Update: rust-1.96.0-1.fc44
Fedora 44 Update: libinput-1.31.3-1.fc44

[SECURITY] Fedora 43 Update: thunderbird-149.0.1-3.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-8463c31b61
2026-06-06 01:10:36.431966+00:00
--------------------------------------------------------------------------------

Name : thunderbird
Product : Fedora 43
Version : 149.0.1
Release : 3.fc43
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.

--------------------------------------------------------------------------------
Update Information:

Update to latest upstream version.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 2 2026 Jan Horak [jhorak@redhat.com] - 149.0.1-1
- Update to 149.0.1
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-8463c31b61' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 44 Update: firefox-151.0.3-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-d1aae27e8b
2026-06-06 01:02:02.289338+00:00
--------------------------------------------------------------------------------

Name : firefox
Product : Fedora 44
Version : 151.0.3
Release : 1.fc44
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.

--------------------------------------------------------------------------------
Update Information:

New upstream release (151.0.3)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 3 2026 Martin Stransky [stransky@redhat.com] - 151.0.3-1
- Update to latest upstream (151.0.3)
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-d1aae27e8b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 44 Update: webkitgtk-2.52.4-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-a63aad0224
2026-06-06 01:02:02.289325+00:00
--------------------------------------------------------------------------------

Name : webkitgtk
Product : Fedora 44
Version : 2.52.4
Release : 1.fc44
URL : https://www.webkitgtk.org/
Summary : GTK web content engine library
Description :
WebKitGTK is the port of the WebKit web rendering engine to the
GTK platform.

--------------------------------------------------------------------------------
Update Information:

Add support for half-width fonts.
Improve content filter compilation by avoiding file copies.
Improve handling of out of disk space conditions when the NetworkProcess tried
to write data in caches.
Fix painting scrollbars when their width changes.
Fix playback of certain YouTube videos with low frame rates.
Fix webkit://gpu not working in systems where neither libGL.so.1 nor
libOpenGL.so.0 are available.
Fix several crashes and rendering issues.
Security fixes: CVE-2026-28847, CVE-2026-28883, CVE-2026-28901, CVE-2026-28902,
CVE-2026-28903, CVE-2026-28904, CVE-2026-28905, CVE-2026-28907, CVE-2026-28942,
CVE-2026-28946, CVE-2026-28947, CVE-2026-28953, CVE-2026-28955, CVE-2026-28958,
CVE-2026-43658, CVE-2026-43660
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 2 2026 Michael Catanzaro [mcatanzaro@gnome.org] - 2.52.4-1
- Update to 2.52.4
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-a63aad0224' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 44 Update: rust-1.96.0-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-e251935c8f
2026-06-06 01:02:02.289310+00:00
--------------------------------------------------------------------------------

Name : rust
Product : Fedora 44
Version : 1.96.0
Release : 1.fc44
URL : https://www.rust-lang.org
Summary : The Rust Programming Language
Description :
Rust is a systems programming language that runs blazingly fast, prevents
segfaults, and guarantees thread safety.

This package includes the Rust compiler and documentation generator.

--------------------------------------------------------------------------------
Update Information:

Update to Rust 1.96.0:
New Range* types
Assert matching patterns
Changes to WebAssembly targets
Stabilized APIs
Cargo CVE-2026-5222 and CVE-2026-5223 for third-party registries.
See the blog post and release notes for more details.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 1 2026 Josh Stone [jistone@redhat.com] - 1.96.0-1
- Update to Rust 1.96.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2458926 - rust-1.96.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2458926
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-e251935c8f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new

[SECURITY] Fedora 44 Update: libinput-1.31.3-1.fc44

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-5e2446b30f
2026-06-06 01:02:02.289317+00:00
--------------------------------------------------------------------------------

Name : libinput
Product : Fedora 44
Version : 1.31.3
Release : 1.fc44
URL : http://www.freedesktop.org/wiki/Software/libinput/
Summary : Input device library
Description :
libinput is a library that handles input devices for display servers and other
applications that need to directly deal with input devices.

It provides device detection, device handling, input device event processing
and abstraction so minimize the amount of custom input code the user of
libinput need to provide the common set of functionality that users expect.

--------------------------------------------------------------------------------
Update Information:

libinput 1.31.3, fixes a udev property inject via uinput devices that can lead
to local privilege escalation
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 4 2026 Peter Hutterer [peter.hutterer@redhat.com] - 1.31.3-1
- libinput 1.31.3
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-5e2446b30f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new