Fedora Linux 8738 Published by

The following security updates have been released for Fedora Linux:

Fedora 40 Update: thunderbird-115.11.0-1.fc40
Fedora 40 Update: mingw-python-requests-2.32.0-1.fc40
Fedora 39 Update: chromium-125.0.6422.112-1.fc39
Fedora 39 Update: mingw-python-requests-2.32.0-1.fc39




Fedora 40 Update: thunderbird-115.11.0-1.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-7ade906120
2024-05-30 01:20:52.014143
--------------------------------------------------------------------------------

Name : thunderbird
Product : Fedora 40
Version : 115.11.0
Release : 1.fc40
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.

--------------------------------------------------------------------------------
Update Information:

Update to 115.11.0
https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/
https://www.thunderbird.net/en-US/thunderbird/115.11.0/releasenotes/
https://www.thunderbird.net/en-US/thunderbird/115.10.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-20/
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 14 2024 Eike Rathke [erack@redhat.com] - 115.11.0-1
- Update to 115.11.0
* Tue Apr 23 2024 Jan Horak [jhorak@redhat.com] - 115.10.1-4
- Move the MOZ_APP_REMOTINGNAME from the startup script to the build options.
* Tue Apr 23 2024 Jan Horak [jhorak@redhat.com] - 115.10.1-3
- Fixed startup script
* Mon Apr 22 2024 Eike Rathke [erack@redhat.com] - 115.10.1-2
- Resolves: rhbz#2276078 Set MOZ_APP_REMOTINGNAME to firefox
* Mon Apr 22 2024 Eike Rathke [erack@redhat.com] - 115.10.1-1
- Update to 115.10.1
* Tue Apr 16 2024 Eike Rathke [erack@redhat.com] - 115.10.0-1
- Update to 115.10.0
- Revert expat CVE-2023-52425 fix
* Fri Mar 22 2024 Jan Horak [jhorak@redhat.com] - 115.9.0-2
- Use wayland backend on Fedora 40+
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-7ade906120' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 40 Update: mingw-python-requests-2.32.0-1.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-efc4802051
2024-05-30 01:20:52.014066
--------------------------------------------------------------------------------

Name : mingw-python-requests
Product : Fedora 40
Version : 2.32.0
Release : 1.fc40
URL : https://requests.readthedocs.io/
Summary : MinGW Windows Python requests library
Description :
MinGW Windows Python requests.

--------------------------------------------------------------------------------
Update Information:

Update to requests-2.32.0, fixes CVE-2024-35195.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 21 2024 Sandro Mani [manisandro@gmail.com] - 2.32.0-1
- Update to 2.32.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2282133 - CVE-2024-35195 mingw-python-requests: subsequent requests to the same host ignore cert verification [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2282133
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-efc4802051' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: chromium-125.0.6422.112-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-151b368efb
2024-05-30 01:19:27.929841
--------------------------------------------------------------------------------

Name : chromium
Product : Fedora 39
Version : 125.0.6422.112
Release : 1.fc39
URL : http://www.chromium.org/Home
Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use
Description :
Chromium is an open-source web browser, powered by WebKit (Blink).

--------------------------------------------------------------------------------
Update Information:

update to 125.0.6422.112
High CVE-2024-5274: Type Confusion in V8
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 26 2024 Than Ngo [than@redhat.com] - 125.0.6422.112-1
- update to 125.0.6422.112
* High CVE-2024-5274: Type Confusion in V8
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2283083 - CVE-2024-5274 chromium: chromium-browser: Type Confusion in V8 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2283083
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-151b368efb' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: mingw-python-requests-2.32.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-7e4f058c2f
2024-05-30 01:19:27.929777
--------------------------------------------------------------------------------

Name : mingw-python-requests
Product : Fedora 39
Version : 2.32.0
Release : 1.fc39
URL : https://requests.readthedocs.io/
Summary : MinGW Windows Python requests library
Description :
MinGW Windows Python requests.

--------------------------------------------------------------------------------
Update Information:

Update to requests-2.32.0, fixes CVE-2024-35195.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 21 2024 Sandro Mani [manisandro@gmail.com] - 2.32.0-1
- Update to 2.32.0
* Thu Jan 25 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.31.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering [releng@fedoraproject.org] - 2.31.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2282133 - CVE-2024-35195 mingw-python-requests: subsequent requests to the same host ignore cert verification [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2282133
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-7e4f058c2f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--