CVE-2026-45614

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Prior to version 4.11.0, on many of the ECDH shared secret paths, the public key isn't verified to be a point on the correct curve. By...

CVE-2026-45898

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption by removing worklist The commit e1168f0 "RDMA/iwcm: Simplify cmeventhandler" changed the work submission logic to unconditionally call queuework with the expectation that queuework would...

CVE-2026-39831

The Verify method for FIDO/U2F security key types [email protected], [email protected] did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior,...

[SECURITY] Fedora 43 Update: nix-2.31.5-1.fc43

Nix is a purely functional package manager. It allows multiple versions of a package to be installed side-by-side, ensures that dependency specifications are complete, supports atomic upgrades and rollbacks, allows non-root users to install software, and has many other features. It is the basis o...

SUSE CVE-2026-27489

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0...

[SECURITY] Fedora 42 Update: cri-o1.31-1.31.13-1.fc42

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 42 Update: open62541-1.4.13-1.fc42

open62541 is a C-based library linking with C++ projects is possible with all necessary tools to implement dedicated OPC UA clients and servers, or to integrate OPC UA-based communication into existing applications...

[SECURITY] Fedora 41 Update: wine-10.12-2.fc41

Wine as a compatibility layer for UNIX to run Windows applications. This package includes a program loader, which allows unmodified Windows 3.x/9x/NT binaries to run on x86 and x8664 Unixes. Wine can use native system .dll files if they are available. In Fedora wine is a meta-package which will...

thunderbird security update

128.7.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.7.0 - Add OpenELA debranding 128.7.0-1 - Update to 128.2.0 build1...

[SECURITY] Fedora 41 Update: golang-github-aws-smithy-1.22.1-1.fc41

Smithy code generators for Go in development...

CVE-2024-21244

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Telemetry. Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

[SECURITY] Fedora 40 Update: yt-dlp-2024.07.02-1.fc40

yt-dlp is a command-line program to download videos from many different online video platforms, such as youtube.com. The project is a fork of youtube-dl with additional features and fixes...

CVE-2020-36774

plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service application crash...

Moderate: Red Hat Security Advisory: nss security update

An update for nss is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

[SECURITY] Fedora 38 Update: mingw-python-OWSLib-0.28.1-1.fc38

MinGW Windows Python OWSLib library...

[SECURITY] Fedora 35 Update: OpenImageIO-2.2.21.0-2.fc35

OpenImageIO is a library for reading and writing images, and a bunch of relat ed classes, utilities, and applications. Main features include: - Extremely simple but powerful ImageInput and ImageOutput APIs for reading a nd writing 2D images that is format agnostic. - Format plugins for TIFF,...

[SECURITY] Fedora 35 Update: rust-cranelift-entity-0.77.0-1.fc35

Data structures using entity references as mapping keys...

[SECURITY] Fedora 29 Update: nng-1.0.1-2.fc29

nng nanomsg next generation is a socket library that provides several common communication patterns. It aims to make the networking layer fast, scalable, and easy to use. Implemented in C, it works on a wide range of operating systems with no further dependencies. The communication patterns, also...

[SECURITY] Fedora 28 Update: visualboyadvance-m-2.1.0-2.fc28

VisualBoyAdvance-M is a Nintendo Game Boy Emulator with high compatibility with commercial games. It emulates the Nintendo Game Boy Advance hand held conso le, in addition to the original Game Boy hand held systems and its Super and Co lor variants. VBA-M is a continued development of the now...

Fedora 11 : pidgin-sipe-1.9.1-1.fc11 (2010-4830)

Contributed File transfer functionality. File encryption is supported. Jakub Adam, Tomas Hrabik NTLMv2 and NTLMv2 Session Security support pier11 Implemented SIP Authentication Extensions protocol version 4 and 3 pier11 Adoption for commercial UNIX - HP/UX, Irix, Solaris - big endian fixes and...