[SECURITY] Fedora 44 Update: uv-0.11.11-1.fc44

An extremely fast Python package and project manager, written in Rust. Highlights: =E2=80=A2 A single tool to replace pip, pip-tools, pipx, poetry, pyenv, twi ne, virtualenv, and more. =E2=80=A2 10-100x faster than pip. =E2=80=A2 Provides comprehensive project management, with a universal lockf...

GHSA-VFVV-C25P-M7MM vulnerabilities

Vulnerabilities for packages: uv, pixi...

GHSA-VFVV-C25P-M7MM vulnerabilities

Vulnerabilities for packages: pixi, uv...

GHSA-XX64-WWV2-HCQQ vulnerabilities

Vulnerabilities for packages: uv, pixi...

GHSA-FP55-JW48-C537 vulnerabilities

Vulnerabilities for packages: uv, pixi...

GHSA-XX64-WWV2-HCQQ vulnerabilities

Vulnerabilities for packages: pixi, uv...

GHSA-FP55-JW48-C537 vulnerabilities

Vulnerabilities for packages: pixi, uv...

CVE-2026-32766 vulnerabilities

Vulnerabilities for packages: wasmcloud, uv, pixi...

GHSA-6GX3-4362-RF54 vulnerabilities

Vulnerabilities for packages: wasmcloud, uv, pixi...

python311-uv-0.10.11-1.1 on GA media (moderate)

python311-uv-0.10.11-1.1 on GA media Announcement ID: openSUSE-SU-2026:10380-1 Rating: moderate Cross-References: CVE-2026-31812 CVSS scores: CVE-2026-31812 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-31812 SUSE : 6.9...

GHSA-65P9-R9H6-22VJ vulnerabilities

Vulnerabilities for packages: linkerd-network-validator, rustls-ffi, efs-utils, linkerd-extension-init, deno, ztunnel, cargo-audit, zellij, zed, py3-xet-core, buck2, rustup, nushell, uv, linkerd2, parseable, lychee, linkerd2-proxy, zizmor, pixi, ntpd-rs...

GHSA-HFPC-8R3F-GW53 vulnerabilities

Vulnerabilities for packages: linkerd-network-validator, rustls-ffi, efs-utils, linkerd-extension-init, deno, ztunnel, cargo-audit, zellij, zed, py3-xet-core, buck2, rustup, nushell, uv, linkerd2, parseable, lychee, linkerd2-proxy, zizmor, pixi, ntpd-rs...

GHSA-65P9-R9H6-22VJ vulnerabilities

Vulnerabilities for packages: parseable, garage, ntpd-rs, linkerd2-cni-plugin, py3-xet-core, ztunnel, linkerd-network-validator, lychee, rustls-ffi, efs-utils, pixi, zellij, zizmor, cargo-audit, linkerd-extension-init, zed, uv, buck2, rustup, nushell, komodo, linkerd2, linkerd2-proxy, deno...

Fedora: Security Advisory (FEDORA-2026-086a367966)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2025-42899

Name of the Vulnerable Software and Affected Versions astral-tokio-tar versions prior to 0.5.6 async-tar versions prior to 0.5.6 tokio-tar versions prior to 0.5.6 Description astral-tokio-tar, async-tar, and tokio-tar are vulnerable to a boundary parsing issue due to inconsistent handling of...

Fedora: Security Advisory (FEDORA-2025-c71f0af9b2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : rust-secret-service / uv (2025-d757bc292e)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-d757bc292e advisory. Security fix for CVE-2025-58160: rebuilt uv and python-uv-build with rust-tracing-subscriber 0.3.20. Initial package for rust-secret-service in Fedora 43...

Fedora 44 : uv (2025-18feebeaa7)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-18feebeaa7 advisory. Automatic update for uv-0.8.11-2.fc44. Changelog Tue Sep 2 2025 Benjamin A. Beasley - 0.8.11-2 - Rebuilt with rust-tracing-subscriber-0.3.20 - Fixes...

Fedora: Security Advisory (FEDORA-2025-92fd810e1d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GHSA-QX2V-8332-M4FV vulnerabilities

Vulnerabilities for packages: jujutsu, linkerd-extension-init, mdbook, uv, buck2, efs-utils, linkerd2, shadowsocks-rust, linkerd2-proxy, zola, pixi...