Crossword Puzzle Sets Xword, MinGW LibXSLT, QGIS updates for Fedora

Fedora Linux 8912 Published 3 days ago by Philipp Esselbach

News

Fedora Linux has been updated with several security enhancements, including Crossword Puzzle Sets Xword, MinGW LibXSLT, and QGIS:

Fedora 42 Update: crosswords-puzzle-sets-xword-dl-0.4.8-1.fc42
Fedora 40 Update: mingw-libxslt-1.1.43-1.fc40
Fedora 41 Update: qgis-3.40.5-2.fc41
Fedora 41 Update: mingw-libxslt-1.1.43-1.fc41
Fedora 42 Update: qgis-3.42.1-2.fc42

[SECURITY] Fedora 42 Update: crosswords-puzzle-sets-xword-dl-0.4.8-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-2f7c693519
2025-03-30 00:15:15.522144+00:00
--------------------------------------------------------------------------------

Name : crosswords-puzzle-sets-xword-dl
Product : Fedora 42
Version : 0.4.8
Release : 1.fc42
URL : https://gitlab.gnome.org/jrb/puzzle-sets-xword-dl
Summary : Puzzle Sets from assorted newspapers for GNOME Crosswords
Description :
Download crossword puzzles for GNOME Crosswords from assorted newspapers using
xword-dl.

--------------------------------------------------------------------------------
Update Information:

Update to 0.4.8; Fixes: RHBZ#2237964, RHBZ#2282129
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 28 2025 Davide Cavalca [dcavalca@fedoraproject.org] - 0.4.8-1
- Update to 0.4.8; Fixes: RHBZ#2237964, RHBZ#2282129
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2237964 - crosswords-puzzle-sets-xword-dl-2023.9.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2237964
[ 2 ] Bug #2282129 - CVE-2024-35195 crosswords-puzzle-sets-xword-dl: requests: subsequent requests to the same host ignore cert verification [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2282129
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-2f7c693519' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 40 Update: mingw-libxslt-1.1.43-1.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f7a12118f3
2025-04-01 01:40:15.954881+00:00
--------------------------------------------------------------------------------

Name : mingw-libxslt
Product : Fedora 40
Version : 1.1.43
Release : 1.fc40
URL : https://gitlab.gnome.org/GNOME/libxslt
Summary : MinGW Windows Library providing the Gnome XSLT engine
Description :
This C library allows to transform XML files into other XML files
(or HTML, text, ...) using the standard XSLT stylesheet transformation
mechanism. To use it you need to have a version of libxml2 >= 2.6.27
installed. The xsltproc command is a command line interface to the XSLT engine

--------------------------------------------------------------------------------
Update Information:

Update to 1.1.43, fixes CVE-2024-55549 and CVE-2025-24855.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 17 2025 Sandro Mani [manisandro@gmail.com] - 1.1.43-1
- Update to 1.1.43
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.1.42-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Thu Jul 18 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.1.42-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Sat Jul 6 2024 Sandro Mani [manisandro@gmail.com] - 1.1.42-1
- Update to 1.1.42
* Fri Jun 21 2024 Sandro Mani [manisandro@gmail.com] - 1.1.41-1
- Update to 1.1.41
* Sat Jun 15 2024 Sandro Mani [manisandro@gmail.com] - 1.1.40-1
- Update to 1.1.40
* Sat Jun 15 2024 Sandro Mani [manisandro@gmail.com] - 1.1.38-1
- Update to 1.1.38
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2352508 - CVE-2025-24855 mingw-libxslt: Use-After-Free in libxslt numbers.c [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2352508
[ 2 ] Bug #2352511 - CVE-2025-24855 mingw-libxslt: Use-After-Free in libxslt numbers.c [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2352511
[ 3 ] Bug #2352518 - CVE-2024-55549 mingw-libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList) [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2352518
[ 4 ] Bug #2352521 - CVE-2024-55549 mingw-libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList) [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2352521
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f7a12118f3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: qgis-3.40.5-2.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-ccb6313749
2025-04-01 01:29:51.957119+00:00
--------------------------------------------------------------------------------

Name : qgis
Product : Fedora 41
Version : 3.40.5
Release : 2.fc41
URL : http://www.qgis.org
Summary : A user friendly Open Source Geographic Information System
Description :
Geographic Information System (GIS) manages, analyzes, and displays
databases of geographic information. QGIS supports shape file
viewing and editing, spatial data storage with PostgreSQL/PostGIS, projection
on-the-fly, map composition, and a number of other features via a plugin
interface. QGIS also supports display of various geo-referenced raster and
Digital Elevation Model (DEM) formats including GeoTIFF, Arc/Info ASCII Grid,
and USGS ASCII DEM.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2024-55565.
Update to 3.40.5.
Update to 3.40.4.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Mar 23 2025 Sandro Mani [manisandro@gmail.com] - 3.40.5-2
- Fix CVE-2024-55565
* Sat Mar 22 2025 Sandro Mani [manisandro@gmail.com] - 3.40.5-1
- Update to 3.40.5
* Tue Feb 25 2025 Sandro Mani [manisandro@gmail.com] - 3.40.4-1
- Update to 3.40.4
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2331113 - CVE-2024-55565 qgis: nanoid mishandles non-integer values [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2331113
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-ccb6313749' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: mingw-libxslt-1.1.43-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-fd62ac3fb1
2025-04-01 01:29:51.957082+00:00
--------------------------------------------------------------------------------

Name : mingw-libxslt
Product : Fedora 41
Version : 1.1.43
Release : 1.fc41
URL : https://gitlab.gnome.org/GNOME/libxslt
Summary : MinGW Windows Library providing the Gnome XSLT engine
Description :
This C library allows to transform XML files into other XML files
(or HTML, text, ...) using the standard XSLT stylesheet transformation
mechanism. To use it you need to have a version of libxml2 >= 2.6.27
installed. The xsltproc command is a command line interface to the XSLT engine

--------------------------------------------------------------------------------
Update Information:

Update to 1.1.43, fixes CVE-2024-55549 and CVE-2025-24855.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 17 2025 Sandro Mani [manisandro@gmail.com] - 1.1.43-1
- Update to 1.1.43
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1.1.42-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2352508 - CVE-2025-24855 mingw-libxslt: Use-After-Free in libxslt numbers.c [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2352508
[ 2 ] Bug #2352511 - CVE-2025-24855 mingw-libxslt: Use-After-Free in libxslt numbers.c [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2352511
[ 3 ] Bug #2352518 - CVE-2024-55549 mingw-libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList) [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2352518
[ 4 ] Bug #2352521 - CVE-2024-55549 mingw-libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList) [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2352521
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-fd62ac3fb1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: qgis-3.42.1-2.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-f12c63c177
2025-04-01 00:16:22.619668+00:00
--------------------------------------------------------------------------------

Name : qgis
Product : Fedora 42
Version : 3.42.1
Release : 2.fc42
URL : http://www.qgis.org
Summary : A user friendly Open Source Geographic Information System
Description :
Geographic Information System (GIS) manages, analyzes, and displays
databases of geographic information. QGIS supports shape file
viewing and editing, spatial data storage with PostgreSQL/PostGIS, projection
on-the-fly, map composition, and a number of other features via a plugin
interface. QGIS also supports display of various geo-referenced raster and
Digital Elevation Model (DEM) formats including GeoTIFF, Arc/Info ASCII Grid,
and USGS ASCII DEM.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2024-55565.
Update to 3.42.1.
Update to qgis-3.42.0
--------------------------------------------------------------------------------
ChangeLog:

* Sun Mar 23 2025 Sandro Mani [manisandro@gmail.com] - 3.42.1-2
- Fix CVE-2024-55565
* Fri Mar 21 2025 Sandro Mani [manisandro@gmail.com] - 3.42.1-1
- Update to 3.42.1
* Tue Mar 18 2025 Benjamin A. Beasley [code@musicinmybrain.net] - 3.42.0-3
- Rebuilt for spatialindex 2.1.0
- Work around removal of LIB_SUFFIX from cmake macro in Fedora 43
* Sun Mar 2 2025 Sandro Mani [manisandro@gmail.com] - 3.42.0-2
- Rebuild (grass)
* Sat Feb 22 2025 Sandro Mani [manisandro@gmail.com] - 3.42.0-1
- Update to 3.42.0
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2331113 - CVE-2024-55565 qgis: nanoid mishandles non-integer values [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2331113
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-f12c63c177' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

Mabox Linux 25.03 Istredd released

OpenTelemetry Collector, Freetype, Python-Jinja2, LibreOffice, ACS 4.6, Freetype updates for RHEL

Crossword Puzzle Sets Xword, MinGW LibXSLT, QGIS updates for Fedora

[SECURITY] Fedora 42 Update: crosswords-puzzle-sets-xword-dl-0.4.8-1.fc42

[SECURITY] Fedora 40 Update: mingw-libxslt-1.1.43-1.fc40

[SECURITY] Fedora 41 Update: qgis-3.40.5-2.fc41

[SECURITY] Fedora 41 Update: mingw-libxslt-1.1.43-1.fc41

[SECURITY] Fedora 42 Update: qgis-3.42.1-2.fc42

Windows

Linux

macOS

Community