Fedora Linux has been updated with security enhancements, including Thunderbird, MariaDB, and Augeas:

Fedora 41 Update: thunderbird-128.9.0-1.fc41
Fedora 41 Update: mariadb10.11-10.11.11-1.fc41
Fedora 40 Update: augeas-1.14.2-0.4.20250324git4dffa3d.fc40

[SECURITY] Fedora 41 Update: thunderbird-128.9.0-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-9a271ccfb3
2025-04-09 01:52:23.863565+00:00
--------------------------------------------------------------------------------

Name : thunderbird
Product : Fedora 41
Version : 128.9.0
Release : 1.fc41
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.

--------------------------------------------------------------------------------
Update Information:

Update to 128.9.0
https://www.thunderbird.net/en-US/thunderbird/128.9.0esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2025-24/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 2 2025 Eike Rathke [erack@redhat.com] - 128.9.0-1
- Update to 128.9.0
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-9a271ccfb3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: mariadb10.11-10.11.11-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-66ce799182
2025-04-09 01:52:23.863554+00:00
--------------------------------------------------------------------------------

Name : mariadb10.11
Product : Fedora 41
Version : 10.11.11
Release : 1.fc41
URL : http://mariadb.org
Summary : A very fast and robust SQL database server
Description :
MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded
SQL database server. It is a client/server implementation consisting of
a server daemon (mariadbd) and many different client programs and libraries.
The base package contains the standard MariaDB/MySQL client programs and
utilities.

--------------------------------------------------------------------------------
Update Information:

MariaDB 10.11.11
Release notes: https://mariadb.com/kb/en/mariadb-10-11-11-release-notes/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Feb 5 2025 Michal Schorm [mschorm@redhat.com] - 3:10.11.11-1
- Rebase to 10.11.11
* Sat Feb 1 2025 Bj??rn Esser [besser82@fedoraproject.org] - 3:10.11.10-4
- Add explicit BR: libxcrypt-devel
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 3:10.11.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Fri Nov 29 2024 Timoth??e Ravier [tim@siosm.fr] - 3:10.11.10-2
- Split mariadb-access & mariadb-find-rows into a client-utils subpackage
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2351040 - CVE-2023-52969 mariadb10.11: MariaDB Server Crash Due to Empty Backtrace Log [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2351040
[ 2 ] Bug #2351042 - CVE-2023-52971 mariadb10.11: MariaDB Server Crash [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2351042
[ 3 ] Bug #2351044 - CVE-2023-52970 mariadb10.11: MariaDB Server Crash via Item_direct_view_ref [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2351044
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-66ce799182' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

[SECURITY] Fedora 40 Update: augeas-1.14.2-0.4.20250324git4dffa3d.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-31036092ea
2025-04-09 01:31:40.159316+00:00
--------------------------------------------------------------------------------

Name : augeas
Product : Fedora 40
Version : 1.14.2
Release : 0.4.20250324git4dffa3d.fc40
URL : https://github.com/rwmjones/augeas
Summary : A library for changing configuration files
Description :
A library for programmatically editing configuration files. Augeas parses
configuration files into a tree structure, which it exposes through its
public API. Changes made through the API are written back to the initially
read files.

The transformation works very hard to preserve comments and formatting
details. It is controlled by ``lens'' definitions that describe the file
format and the transformation into a tree.

--------------------------------------------------------------------------------
Update Information:

CVE-2025-2588
--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 24 2025 Alexander Bokovoy [abokovoy@redhat.com] - 1.14.2-0.4
- rhbz#235444: CVE-2025-2588
* Mon Feb 24 2025 Richard W.M. Jones [rjones@redhat.com] - 1.14.2-0.3
- Move to fork of Augeas which contains a small number of PRs:
- lenses/tmpfiles.aug: Permit '$' character in /usr/lib/tmpfiles.d/*.conf
- lenses/multipath.aug: Support all possible values for find_multipaths
- lenses/systemd.aug: Allow "+"(fullprivileges) command flag
* Thu Jan 16 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.14.2-0.2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2354444 - CVE-2025-2588 augeas: Hercules Augeas fa.c re_case_expand null pointer dereference [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2354444
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-31036092ea' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--