[SECURITY] Fedora 44 Update: objfw-1.5.4-1.fc44

ObjFW is a portable, lightweight framework for the Objective-C language. It enables you to write an application in Objective-C that will run on any platform supported by ObjFW without having to worry about differences between operating systems or various frameworks you would otherwise need if you...

CIFSwitch

CIFSwitch CVE-2026-46243 Writeuphttps://heyitsas.im/post...

gcc-toolset-13-gcc bug fix and enhancement update

An update is available for gcc-toolset-13-gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gcc-toolset-13-gcc13 package contains the GNU Compiler...

EUVD-2026-28738

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix memory leak in xhcidisableslot xhcialloccommand allocates a command structure and, when the second argument is true, also allocates a completion structure. Currently, the error handling path in xhcidisableslot only...

CVE-2026-43432

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix memory leak in xhcidisableslot xhcialloccommand allocates a command structure and, when the second argument is true, also allocates a completion structure. Currently, the error handling path in xhcidisableslot only...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq5018: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such an entry to the end of the arrays where it is missing, in order to avoid...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: ipq8074: dont disable gccsleepclksrc Once the USB sleep clocks are disabled, the clock framework attempts to disable the sleep clock source as well. However, it seems that this attempt fails, resulting in the following...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: ipq8074: fix PCI-E clock oops Fix PCI-E clock related kernel oops that are caused by a missing clock parent. pcie0rchngclksrc has numparents set to 2 but only one parent is actually set via parenthws, it should also ha...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such an entry to the end of the arrays where it is missing, in order to avoid...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: erspan: Initialize optionslen before referencing options. The struct iptunnelinfo has a flexible array member named options that is protected by a countedbyoptionslen attribute. The compiler will use this information to enforce...

CLSA-2026-1777544437 webkit2gtk3: Fix of 35 CVEs

Rebase to webkitgtk 2.52.3 to address WebKitGTK security advisories WSA-2026-0001 and WSA-2026-0002 matches RHSA-2026:9692. - Drop all CVE-2025- backport patches Patch100..Patch112; the fixes are included in 2.52.3 upstream. - Drop fix-missing-typename.patch: target source file was removed...

CLSA-2026-1777310036 gcc: Fix of CVE-2021-42574

CVE-2021-42574: add -Wbidi-chars warning for Unicode bidirectional text...

OESA-2026-2089 gcc security update

The gcc package contains the GNU Compiler Collection version 14. Security Fixes: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangleconst, as demonstrated by nm-new.CVE-2022-27943...

openSUSE 16 Security Update : rust1.94 (openSUSE-SU-2026:20569-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20569-1 advisory. Changes in rust1.94: - Don't force gcc-15 on SLE-16 and higher bsc1261876 Update to rust1.94.1: - Release notes can be found externally:...

Security update for rust1.94 (moderate)

openSUSE security update: security update for rust1.94 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20569-1 Rating: moderate References: bsc1259623 bsc1261876 Cross-References: CVE-2026-31812 CVSS scores: CVE-2026-31812 SUSE : 5.3...

OPENSUSE-SU-2026:20569-1 Security update for rust1.94

This update for rust1.94 fixes the following issues: Changes in rust1.94: - Don't force gcc-15 on SLE-16 and higher bsc1261876 Update to rust1.94.1: - Release notes can be found externally: https://github.com/rust-lang/rust/releases/tag/1.94.1 - Avoid unwrapping varint decoding during parameters...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007367)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007367 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: qcom: ipq8074: dont disable gccsleepclksrc Once the usb sleep clocks are disabled, clock...

SUSE-SU-2026:1415-1 Security update for rust1.93

This update for rust1.93 fixes the following issues: Security issue: - CVE-2026-31812: denial of service via crafted QUIC initial packet bsc1259623. Non security issue: - Resolve missing gcc requirement that may affect some crate buildin bsc1253321...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006819)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006819 advisory. In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with...

CVE-2026-3580

In wolfSSL 5.8.4, constant-time masking logic in sp256getentry2569 is optimized into conditional branches bnez by GCC when targeting RISC-V RV32I with -O3. This transformation breaks the side-channel resistance of ECC scalar multiplication, potentially allowing a local attacker to recover secret...