Anonymous
2025-08-15 09:51
2025-08-15 09:51
Product
Last Report
Anonymous
2024-07-07 07:01
2024-07-07 07:01
Anonymous
2024-02-07 19:23
2024-02-07 19:23
Anonymous
2026-04-12 07:56
2026-04-12 07:56
Ralf
2026-03-04 15:08
2026-03-04 15:08
Anonymous
2025-12-02 08:32
2025-12-02 08:32
Anonymous
2019-11-27 17:19
2019-11-27 17:19
Anonymous
2019-11-11 09:02
2019-11-11 09:02
Anonymous
2019-07-21 13:03
2019-07-21 13:03
2026-04-19
This week's Linux security updates demand immediate attention because a critical unauthenticated remote code execution flaw in Cockpit leaves AlmaLinux and Oracle Linux systems wide open to unauthorized command execution, so patching those servers should be your absolute top priority. Fedora 42 through 44 are getting hammered with massive patch waves that fix KDE Plasma components, core libraries like cURL and Python, and several memory corruption bugs that would otherwise let attackers run wild on your desktops. RHEL and Rocky admins need to grab the critical authentication fix for the rhc package first, then tackle important updates for BIND, Firefox, and NodeJS while carefully installing Ubuntu cloud kernels to avoid breaking Azure, GCP, or NVIDIA driver stability. Debian, SUSE, Slackware, Gentoo, and Qubes OS also pushed essential fixes for systemd, sudo, FUSE, and a screensaver login bypass that could easily let attackers skip authentication during brief display transitions if you leave your workstation unattended.
The latest XanMod kernel releases bring targeted desktop performance improvements through optimized scheduling, memory management, and network stacks that reduce stutter during heavy multitasking. Installing them via the official APT repository is straightforward but requires preloading build dependencies to keep third-party modules like NVIDIA drivers or virtualization tools working properly. Users should always check module compatibility before upgrading since proprietary software often lags behind custom kernel updates and can break display or networking functions after a reboot. These builds are ideal for desktop users who want smoother system responsiveness without manually patching the mainline Linux kernel themselves.
openSUSE Tumbleweed just pushed out a moderate security fix for opam and its related development tools. This update tackles CVE-2026-41082, which scores around 5.1 on the CVSS scale depending on how you measure it. You should install the new packages right away to block any local exploitation attempts. The upgrade brings everything up to version 2.5.1 and patches the underlying security gap.
openSUSE-SU-2026:10568-1: moderate: opam-2.5.1-1.1 on GA media
openSUSE-SU-2026:10568-1: moderate: opam-2.5.1-1.1 on GA media
Slackware recently pushed updated tigervnc packages for version 15.0 and the rolling release branch to patch serious security holes. Administrators will notice these builds link against a corrected xorg-server that neutralizes multiple dangerous flaws, including buffer overflows and use-after-free bugs in XKB and XSYNC modules. The official advisory references several CVE numbers so teams can verify exactly which vulnerabilities are being mitigated. You can grab the new files from any standard mirror and apply them instantly by running upgradepkg with root privileges.
tigervnc (SSA:2026-108-01)
tigervnc (SSA:2026-108-01)
Rocky Linux administrators managing versions eight through ten should prioritize installing several important security patches immediately. These updates patch critical flaws in widely used tools like libarchive, freerdp, bind, nodejs, thunderbird, and various .NET framework releases. Every affected package includes a Common Vulnerability Scoring System rating that helps teams gauge the exact risk level from published CVE entries.
RLSA-2026:8492: Important: libarchive security update
RLSA-2026:8472: Important: .NET 9.0 security update
RLSA-2026:8470: Important: .NET 8.0 security update
RLSA-2026:8458: Important: freerdp security update
RLSA-2026:8467: Important: .NET 10.0 security update
RLSA-2026:8473: Important: .NET 10.0 security update
RLSA-2026:8475: Important: .NET 9.0 security update
RLSA-2026:8468: Important: .NET 8.0 security update
RLSA-2026:8534: Important: libarchive security update
RLSA-2026:8352: Important: bind security update
RLSA-2026:8339: Important: nodejs:20 security update
RLSA-2026:8457: Important: freerdp security update
RLSA-2026:8474: Important: .NET 9.0 security update
RLSA-2026:8510: Important: libarchive security update
RLSA-2026:8469: Important: .NET 8.0 security update
RLSA-2026:8471: Important: .NET 10.0 security update
RLSA-2026:8459: Important: thunderbird security update
RLSA-2026:8492: Important: libarchive security update
RLSA-2026:8472: Important: .NET 9.0 security update
RLSA-2026:8470: Important: .NET 8.0 security update
RLSA-2026:8458: Important: freerdp security update
RLSA-2026:8467: Important: .NET 10.0 security update
RLSA-2026:8473: Important: .NET 10.0 security update
RLSA-2026:8475: Important: .NET 9.0 security update
RLSA-2026:8468: Important: .NET 8.0 security update
RLSA-2026:8534: Important: libarchive security update
RLSA-2026:8352: Important: bind security update
RLSA-2026:8339: Important: nodejs:20 security update
RLSA-2026:8457: Important: freerdp security update
RLSA-2026:8474: Important: .NET 9.0 security update
RLSA-2026:8510: Important: libarchive security update
RLSA-2026:8469: Important: .NET 8.0 security update
RLSA-2026:8471: Important: .NET 10.0 security update
RLSA-2026:8459: Important: thunderbird security update
System administrators should install two critical security updates that Fedora released in April 2026. The first patch covers curl version 8.11.1 on Fedora 42 and closes four gaps involving faulty connection handling and leaked credentials. Meanwhile, the second update focuses on Python 3.12 for Fedora 43 by squashing six vulnerabilities that might allow attackers to run malicious code or inject headers. You can apply both fixes right away through the regular dnf upgrade tool while trusting the standard GPG verification process.
Fedora 42 Update: curl-8.11.1-8.fc42
Fedora 43 Update: python3.12-3.12.13-3.fc43
Fedora 42 Update: curl-8.11.1-8.fc42
Fedora 43 Update: python3.12-3.12.13-3.fc43
Recent Debian security advisories address critical vulnerabilities across several widely used software packages. Perl requires an update because thread creation can temporarily shift the current directory, potentially allowing local attackers to access restricted files or inject malicious code. PostgreSQL versions 11 and 9.6 received follow-up patches to fix a regression in multibyte character handling while also incorporating minor upstream improvements. Meanwhile, MapServer and MuPDF both address heap buffer overflow flaws that could otherwise enable remote denial of service attacks or arbitrary code execution through crafted inputs.
ELA-1685-1 perl security update
ELA-1676-2 postgresql-11 regression update
ELA-1677-2 postgresql-9.6 regression update
ELA-1686-1 mapserver security update
[DSA 6218-1] mupdf security update
[DLA 4538-1] perl security update
ELA-1685-1 perl security update
ELA-1676-2 postgresql-11 regression update
ELA-1677-2 postgresql-9.6 regression update
ELA-1686-1 mapserver security update
[DSA 6218-1] mupdf security update
[DLA 4538-1] perl security update
2026-04-18
PixiEditor 2.1 finally lets you build custom brushes through a node graph while adding full tablet support and sub-pixel painting precision that actually respects your line work. The update introduces smart layers with blackboard inputs, so you can reuse templates and pass data between nested documents without constantly copying files around. A complete timeline rewrite and new renderer fix the sluggish animation playback that used to make scrubbing through frames feel like watching a slideshow load one step at a time. You will also get an extension browser beta, several useful graph nodes, and general stability improvements that keep the interface from dropping copied assets after a window switch.
Wine Staging 11.7 just shipped with a fresh development rebase and an updated vkd3d-latest patchset that targets DirectX 12 translation hiccups on Linux. This release skips the usual waiting period to push experimental fixes straight to users who want early access before patches hit the stable branch. Installation requires pointing directly at /opt/wine-staging/bin/wine so existing stable setups stay untouched and games do not accidentally launch with untested binaries. Stick to this update only if Vulkan stuttering or DX12 crashes are actively breaking your workflow, since experimental builds still carry a higher chance of introducing new regressions.
The latest batch of stable Linux kernels delivers urgent security patches for the network stack while quietly fixing several memory management edge cases. Researchers spent considerable time patching buffer overflows and reference count leaks inside the AF_RXRPC subsystem, which stops local attackers from exploiting oversized packet authenticators or triggering kernel panics. You will also notice targeted repairs for Arm64 page count overflows and virtual memory area leaks that used to waste slab resources during heavy workloads. Intel graphics and networking drivers finally stop hitting race conditions that caused sudden system hangs, and minor build infrastructure tweaks alongside input subsystem corrections wrap up this necessary maintenance update.
The third release candidate for Fedora Linux 44 is now available for community validation, giving testers a chance to catch regressions before the final release locks down. Participants should verify ISO checksums and focus on real-world edge cases like session switching or network reconnection instead of running every automated test case. Only critical issues that violate core release criteria qualify as blockers, so detailed reports with exact reproduction steps get prioritized during triage. Submitting findings to official quality channels helps the team meet strict RC benchmarks while keeping the development schedule on track.
Today's reviews roundup features several compelling upgrades for desktop builders and gamers alike. The ASUS ROG Kithara headset delivers surprisingly rich audio for PC players, while the Keychron V5 Ultra keyboard proves that high polling rates do not always require a premium price tag. Motherboard selections from MSI and Gigabyte cater to enthusiasts chasing the latest Intel processors alongside blazing fast DDR5 memory, and Amazon just introduced a neat 4G LTE backup module for Eero mesh networks. Software tinkerers will find CrossOver useful for running Windows applications on macOS despite some required tweaks, whereas storage fans can grab the silent TerraMaster Thunderbolt enclosure or trust the reliable SAMA power supply to keep their rigs powered up.
Headphones: ASUS ROG Kithara Gaming Headset Review - Audiophile Sound for PC Gamers
Input: Keychron V5 Ultra 8K Review: Budget-friendly 8K
Motherboards: MSI MPG X870E Carbon Max Wi-Fi Review, Gigabyte Z890 AORUS Elite DUO X Motherboard Review – CQDIMM-Ready!
Networking: Amazon Eero Signal review: 4G LTE internet backup for your Eero mesh network
Power: SAMA P1200 ATX 3.1 Power Supply Unit Review
Software: CodeWeavers CrossOver for Mac - Works great, no miracles
Storage: TerraMaster D1 SSD Pro Enclosure Review - Feature Packed and Silent
Wine development release 11.7 delivers targeted fixes that finally stop broken VBScript loops from freezing legacy installers while adding native 7.1 speaker configuration support to DirectSound with optimized audio processing. The update also begins stripping the MSXML subsystem of its external libxml2 dependency, which should eliminate memory leaks and namespace collisions in older Windows utilities. Graphics handling improves through proper SRGB filter recognition for texture loading, alongside restored HTTP response functionality and better 64-bit file offset management. Users running compatibility layers on Linux will notice smoother application launches and fewer script-related crashes without needing to tweak their existing Wine prefixes.
Bazaar 0.7.15 finally stops KDE users from staring at blurry search icons by introducing a configurable environment variable that pulls higher resolution assets for krunner. Developers get a practical new command line tool to preview their Flathub metadata and branding before actually submitting anything, which cuts down on review delays. The rest of the update focuses on smoothing out interface quirks like layout shifts during installs, enforcing search bar limits, and keeping background metadata refreshes from freezing the UI. It is a steady release that keeps the Flatpak store fast and responsive while quietly fixing the annoyances that actually matter to daily users.
Intel just dropped a release candidate for the NPU driver that finally gives Core Ultra users a proper command line tool to track neural processing unit performance. The update also cleans up a messy build system by restoring missing compiler links and disabling environment variable overrides that routinely break local compilations. Developers will appreciate the updated OpenVINO runtime and Level Zero patches, which smooth out cross-platform AI workflow headaches without forcing unnecessary firmware flashes. This release candidate targets actual developer pain points rather than padding version numbers, so it is worth testing before the official stable build hits the main branch.
The fifth developer snapshot of Godot 4.7 delivers several practical workflow upgrades that streamline daily development tasks. Users can now download export templates individually instead of waiting for bulk packages, while the asset library finally surfaces ratings and version history with a single click. Inline shader previews and em-based image scaling cut down on guesswork during UI and visual scripting, and rectangular area lights improve real-time 3D lighting setups. Since this remains a pre-release build, developers should always back up their projects before testing to avoid potential regressions.
Ubuntu released a series of security notices addressing critical vulnerabilities across HWE, NVIDIA, Real-time, FIPS, and GCP Linux kernel variants. These updates patch dozens of flaws that could let attackers compromise system integrity through affected drivers, networking stacks, and file systems. Administrators should apply the recommended package upgrades immediately and restart their machines to fully implement the changes. Keep in mind that any custom kernel modules will probably need rebuilding since the new versions introduce unavoidable application binary interface modifications.
[USN-8188-1] Linux kernel (HWE) vulnerabilities
[USN-8187-1] Linux kernel (NVIDIA) vulnerabilities
[USN-8186-1] Linux kernel (Real-time) vulnerabilities
[USN-8180-2] Linux kernel (FIPS) vulnerabilities
[USN-8185-1] Linux kernel (NVIDIA) vulnerabilities
[USN-8179-2] Linux kernel (FIPS) vulnerabilities
[USN-8184-1] Linux kernel (Real-time) vulnerabilities
[USN-8183-1] Linux kernel (GCP) vulnerabilities
[USN-8177-2] Linux kernel (Real-time) vulnerabilities
[USN-8188-1] Linux kernel (HWE) vulnerabilities
[USN-8187-1] Linux kernel (NVIDIA) vulnerabilities
[USN-8186-1] Linux kernel (Real-time) vulnerabilities
[USN-8180-2] Linux kernel (FIPS) vulnerabilities
[USN-8185-1] Linux kernel (NVIDIA) vulnerabilities
[USN-8179-2] Linux kernel (FIPS) vulnerabilities
[USN-8184-1] Linux kernel (Real-time) vulnerabilities
[USN-8183-1] Linux kernel (GCP) vulnerabilities
[USN-8177-2] Linux kernel (Real-time) vulnerabilities
SUSE has released a batch of security patches addressing multiple vulnerabilities across its Linux distributions and enterprise software packages. The updates range from low to important severity ratings and fix critical issues like denial of service attacks, memory corruption flaws, and improper certificate handling in tools such as NetworkManager, openssl-3, and bind. Administrators can apply these fixes using standard zypper commands or the YaST interface on affected systems including openSUSE Leap, SUSE Linux Enterprise Server, and Tumbleweed. Prompt installation is recommended to mitigate risks associated with CVEs affecting widely used networking, cryptographic, and development libraries.
SUSE-SU-2026:1418-1: low: Security update for iproute2
SUSE-SU-2026:1421-1: moderate: Security update for python-CairoSVG
SUSE-SU-2026:1422-1: moderate: Security update for smc-tools
SUSE-SU-2026:1436-1: moderate: Security update for python-ecdsa
SUSE-SU-2026:1440-1: moderate: Security update for openvswitch3
SUSE-SU-2026:1441-1: moderate: Security update for avahi
SUSE-SU-2026:1443-1: moderate: Security update for NetworkManager
SUSE-SU-2026:1423-1: important: Security update for podman
SUSE-SU-2026:1424-1: moderate: Security update for polkit
SUSE-SU-2026:1429-1: moderate: Security update for openssl-3
SUSE-SU-2026:1432-1: important: Security update for libcap
SUSE-SU-2026:1428-1: important: Security update for bind
SUSE-SU-2026:1427-1: moderate: Security update for NetworkManager
openSUSE-SU-2026:10565-1: moderate: libraw-devel-0.22.1-1.1 on GA media
openSUSE-SU-2026:10560-1: moderate: blender-5.1-5.1.1-1.1 on GA media
openSUSE-SU-2026:10567-1: moderate: python311-Django-5.2.13-1.1 on GA media
openSUSE-SU-2026:10562-1: moderate: flannel-0.28.4-1.1 on GA media
openSUSE-SU-2026:10566-1: moderate: liblog4cxx-devel-1.7.0-2.1 on GA media
openSUSE-SU-2026:10559-1: moderate: ImageMagick-7.1.2.19-1.1 on GA media
openSUSE-SU-2026:10558-1: moderate: GraphicsMagick-1.3.46-5.1 on GA media
openSUSE-SU-2026:10564-1: moderate: libpng16-16-1.6.57-1.1 on GA media
openSUSE-SU-2026:10563-1: moderate: leancrypto-devel-1.7.2-1.1 on GA media
SUSE-SU-2026:1418-1: low: Security update for iproute2
SUSE-SU-2026:1421-1: moderate: Security update for python-CairoSVG
SUSE-SU-2026:1422-1: moderate: Security update for smc-tools
SUSE-SU-2026:1436-1: moderate: Security update for python-ecdsa
SUSE-SU-2026:1440-1: moderate: Security update for openvswitch3
SUSE-SU-2026:1441-1: moderate: Security update for avahi
SUSE-SU-2026:1443-1: moderate: Security update for NetworkManager
SUSE-SU-2026:1423-1: important: Security update for podman
SUSE-SU-2026:1424-1: moderate: Security update for polkit
SUSE-SU-2026:1429-1: moderate: Security update for openssl-3
SUSE-SU-2026:1432-1: important: Security update for libcap
SUSE-SU-2026:1428-1: important: Security update for bind
SUSE-SU-2026:1427-1: moderate: Security update for NetworkManager
openSUSE-SU-2026:10565-1: moderate: libraw-devel-0.22.1-1.1 on GA media
openSUSE-SU-2026:10560-1: moderate: blender-5.1-5.1.1-1.1 on GA media
openSUSE-SU-2026:10567-1: moderate: python311-Django-5.2.13-1.1 on GA media
openSUSE-SU-2026:10562-1: moderate: flannel-0.28.4-1.1 on GA media
openSUSE-SU-2026:10566-1: moderate: liblog4cxx-devel-1.7.0-2.1 on GA media
openSUSE-SU-2026:10559-1: moderate: ImageMagick-7.1.2.19-1.1 on GA media
openSUSE-SU-2026:10558-1: moderate: GraphicsMagick-1.3.46-5.1 on GA media
openSUSE-SU-2026:10564-1: moderate: libpng16-16-1.6.57-1.1 on GA media
openSUSE-SU-2026:10563-1: moderate: leancrypto-devel-1.7.2-1.1 on GA media
Slackware has released updated CUPS packages for versions 15.0 and current to patch several critical security flaws. The update addresses problems ranging from case sensitivity errors in user authentication to buffer overflows in the RSS notifier and weak certificate validation on local interfaces. Administrators can grab the new files directly from official FTP mirrors tailored for both i586 and x86_64 systems. Once you run the upgrade command, simply restart the printing service to ensure all protections take effect immediately.
cups (SSA:2026-107-01)
cups (SSA:2026-107-01)
Oracle has released a comprehensive batch of security and bug fix advisories spanning multiple versions of its enterprise operating system. These updates address critical vulnerabilities in widely used software like the Unbreakable Enterprise Kernel, Node.js, Firefox, and Cockpit while also patching denial of service flaws and buffer overflows across networking tools. Administrators can apply these fixes through the standard package repositories for both x86_64 and aarch64 architectures to maintain system stability and security compliance. The releases also include routine performance improvements and configuration adjustments for utilities such as BIND, nghttp2, and FreeRDP.
ELBA-2026-50233 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
ELSA-2026-50232 Important: Unbreakable Enterprise kernel security update
ELSA-2026-8492 Important: Oracle Linux 10 libarchive security update
ELSA-2026-8458 Important: Oracle Linux 10 freerdp security update
OLAMSA-2026-0007 Critical: Oracle Linux 9 ol-automation-manager security update
OLAMSA-2026-0008 Critical: Oracle Linux 8 ol-automation-manager security update
ELSA-2026-8352 Important: Oracle Linux 8 bind security update
ELBA-2026-8100 Oracle Linux 8 sed bug fix and enhancement update
ELSA-2026-7668 Important: Oracle Linux 9 nghttp2 security update
ELBA-2026-6833 Oracle Linux 9 dnsmasq bug fix and enhancement update
ELBA-2026-6838 Oracle Linux 9 NetworkManager bug fix and enhancement update
ELSA-2026-7682 Important: Oracle Linux 10 openexr security update
ELSA-2026-7350 Important: Oracle Linux 9 nodejs:24 security update
ELSA-2026-7384 Critical: Oracle Linux 9 cockpit: Unauthenticated remote code execution due to SSH command-line argument injection
ELSA-2026-6570 Moderate: Oracle Linux 9 kernel security update
ELBA-2026-6252 Oracle Linux 8 scap-security-guide bug fix and enhancement update
ELBA-2026-50183 Oracle Linux 9 pcp bug fix update
ELBA-2026-8104 Oracle Linux 8 nvme-cli bug fix and enhancement update
ELBA-2026-50187 Oracle Linux 7 systemd bug fix update
ELSA-2026-7666 Important: Oracle Linux 10 nghttp2 security update
ELSA-2026-8119 Important: Oracle Linux 10 squid security update
ELBA-2026-8095 Oracle Linux 8 nss bug fix and enhancement update
ELSA-2026-7677 Important: Oracle Linux 8 fontforge security update
ELSA-2026-7672 Important: Oracle Linux 10 firefox security update
ELSA-2026-7896 Important: Oracle Linux 9 nodejs:20 security update
ELSA-2026-6918 Important: Oracle Linux 8 freerdp security update
ELSA-2026-6817 Important: Oracle Linux 10 capstone security update
ELSA-2026-7992 Important: Oracle Linux 10 golang-github-openprinting-ipp-usb security update
ELBA-2026-50233 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
ELSA-2026-50232 Important: Unbreakable Enterprise kernel security update
ELSA-2026-8492 Important: Oracle Linux 10 libarchive security update
ELSA-2026-8458 Important: Oracle Linux 10 freerdp security update
OLAMSA-2026-0007 Critical: Oracle Linux 9 ol-automation-manager security update
OLAMSA-2026-0008 Critical: Oracle Linux 8 ol-automation-manager security update
ELSA-2026-8352 Important: Oracle Linux 8 bind security update
ELBA-2026-8100 Oracle Linux 8 sed bug fix and enhancement update
ELSA-2026-7668 Important: Oracle Linux 9 nghttp2 security update
ELBA-2026-6833 Oracle Linux 9 dnsmasq bug fix and enhancement update
ELBA-2026-6838 Oracle Linux 9 NetworkManager bug fix and enhancement update
ELSA-2026-7682 Important: Oracle Linux 10 openexr security update
ELSA-2026-7350 Important: Oracle Linux 9 nodejs:24 security update
ELSA-2026-7384 Critical: Oracle Linux 9 cockpit: Unauthenticated remote code execution due to SSH command-line argument injection
ELSA-2026-6570 Moderate: Oracle Linux 9 kernel security update
ELBA-2026-6252 Oracle Linux 8 scap-security-guide bug fix and enhancement update
ELBA-2026-50183 Oracle Linux 9 pcp bug fix update
ELBA-2026-8104 Oracle Linux 8 nvme-cli bug fix and enhancement update
ELBA-2026-50187 Oracle Linux 7 systemd bug fix update
ELSA-2026-7666 Important: Oracle Linux 10 nghttp2 security update
ELSA-2026-8119 Important: Oracle Linux 10 squid security update
ELBA-2026-8095 Oracle Linux 8 nss bug fix and enhancement update
ELSA-2026-7677 Important: Oracle Linux 8 fontforge security update
ELSA-2026-7672 Important: Oracle Linux 10 firefox security update
ELSA-2026-7896 Important: Oracle Linux 9 nodejs:20 security update
ELSA-2026-6918 Important: Oracle Linux 8 freerdp security update
ELSA-2026-6817 Important: Oracle Linux 10 capstone security update
ELSA-2026-7992 Important: Oracle Linux 10 golang-github-openprinting-ipp-usb security update
Gentoo Linux released two security advisories addressing critical flaws in DTrace and FUSE that could allow attackers to execute arbitrary code. The first advisory highlights a vulnerability in the dtprobed component where specially crafted USDT provider names can trigger unauthorized file creation, potentially paving the way for malicious code execution. Meanwhile, a separate issue within FUSE involves both a null pointer dereference and a use-after-free bug that may crash the system or be exploited for remote code execution. Administrators running affected versions should immediately sync their package repositories and upgrade DTrace to at least version 2.0.6 while updating FUSE to version 3.18.1 or higher.
[ GLSA 202604-04 ] DTrace: Arbitrary file creation via dtprobed
[ GLSA 202604-03 ] FUSE: Multiple Vulnerabilities
[ GLSA 202604-04 ] DTrace: Arbitrary file creation via dtprobed
[ GLSA 202604-03 ] FUSE: Multiple Vulnerabilities
Fedora 42 and 43 just received a batch of security updates that patch multiple critical vulnerabilities across several key packages. The releases address serious flaws in libraries like mingw-LibRaw, mbedtls, and usd, which could otherwise allow attackers to execute arbitrary code or corrupt system memory. Additional fixes target the smb4k share browser and audio tools such as mac and aqualung by resolving buffer overflow risks and information disclosure issues. You can apply these important patches right away using the standard dnf upgrade command with the specific advisory identifiers listed in each notice.
Fedora 42 Update: mingw-LibRaw-0.21.5-3.fc42
Fedora 42 Update: smb4k-4.0.6-1.fc42
Fedora 42 Update: mac-12.63-1.fc42
Fedora 42 Update: aqualung-1.2-10.fc42
Fedora 42 Update: stb-0^20260313git904aa67-2.fc42
Fedora 42 Update: mbedtls-3.6.6-1.fc42
Fedora 43 Update: mingw-LibRaw-0.21.5-3.fc43
Fedora 43 Update: smb4k-4.0.6-1.fc43
Fedora 43 Update: stb-0^20260313git904aa67-2.fc43
Fedora 43 Update: usd-25.08-20.fc43
Fedora 43 Update: aqualung-1.2-12.fc43
Fedora 43 Update: mac-12.63-1.fc43
Fedora 42 Update: mingw-LibRaw-0.21.5-3.fc42
Fedora 42 Update: smb4k-4.0.6-1.fc42
Fedora 42 Update: mac-12.63-1.fc42
Fedora 42 Update: aqualung-1.2-10.fc42
Fedora 42 Update: stb-0^20260313git904aa67-2.fc42
Fedora 42 Update: mbedtls-3.6.6-1.fc42
Fedora 43 Update: mingw-LibRaw-0.21.5-3.fc43
Fedora 43 Update: smb4k-4.0.6-1.fc43
Fedora 43 Update: stb-0^20260313git904aa67-2.fc43
Fedora 43 Update: usd-25.08-20.fc43
Fedora 43 Update: aqualung-1.2-12.fc43
Fedora 43 Update: mac-12.63-1.fc43
Debian administrators should pay close attention to the security advisories, which cover several important software packages. These updates address serious vulnerabilities found across chromium, nss, postgresql-13, luanti, opam, gimp, mapserver, and tiff that could easily let attackers run malicious code or crash entire systems. Each notice lists the exact patched versions needed for oldstable, stable, and extended support releases so maintainers can quickly roll out the fixes without guessing.
Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1684-1 nss security update
Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4524-2] postgresql-13 regression update
[DLA 4537-1] mapserver security update
[DLA 4536-1] tiff security update
Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6214-1] chromium security update
[DSA 6216-1] opam security update
[DSA 6215-1] gimp security update
Debian GNU/Linux 13 (Trixie):
[DSA 6217-1] luanti security update
Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1684-1 nss security update
Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4524-2] postgresql-13 regression update
[DLA 4537-1] mapserver security update
[DLA 4536-1] tiff security update
Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6214-1] chromium security update
[DSA 6216-1] opam security update
[DSA 6215-1] gimp security update
Debian GNU/Linux 13 (Trixie):
[DSA 6217-1] luanti security update
AlmaLinux rolled out a series of critical security patches that affect both version nine and ten of its platform. The updates address multiple high risk vulnerabilities across .NET versions eight and nine, FreeRDP, Thunderbird, and libarchive. Attackers could potentially exploit these flaws to run malicious code remotely or crash systems through memory handling errors and parsing bugs. Administrators need to deploy these fixes right away since the issues carry an important severity rating and leave systems wide open to exploitation.
ALSA-2026:8472: .NET 9.0 security update (Important)
ALSA-2026:8492: libarchive security update (Important)
ALSA-2026:8457: freerdp security update (Important)
ALSA-2026:8469: .NET 8.0 security update (Important)
ALSA-2026:8459: thunderbird security update (Important)
ALSA-2026:8510: libarchive security update (Important)
ALSA-2026:8472: .NET 9.0 security update (Important)
ALSA-2026:8492: libarchive security update (Important)
ALSA-2026:8457: freerdp security update (Important)
ALSA-2026:8469: .NET 8.0 security update (Important)
ALSA-2026:8459: thunderbird security update (Important)
ALSA-2026:8510: libarchive security update (Important)
[ Archive ]
