Fedora Linux has been updated with multiple security enhancements, including golang-x-crypto-0.31.0-2.fc40, kernel-headers-6.12.4-100.fc40, thunderbird-128.5.2-1.fc40, bpftool-7.5.0-1.fc40, and bpftool-7.5.0-1.fc41:

Fedora 40 Update: golang-x-crypto-0.31.0-2.fc40
Fedora 40 Update: kernel-headers-6.12.4-100.fc40
Fedora 40 Update: thunderbird-128.5.2-1.fc40
Fedora 40 Update: kernel-6.12.4-100.fc40
Fedora 40 Update: bpftool-7.5.0-1.fc40
Fedora 41 Update: golang-x-crypto-0.31.0-2.fc41
Fedora 41 Update: kernel-headers-6.12.4-200.fc41
Fedora 41 Update: kernel-6.12.4-200.fc41
Fedora 41 Update: bpftool-7.5.0-1.fc41

[SECURITY] Fedora 40 Update: golang-x-crypto-0.31.0-2.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-8f83d0ed92
2024-12-16 02:29:18.629399+00:00
--------------------------------------------------------------------------------

Name : golang-x-crypto
Product : Fedora 40
Version : 0.31.0
Release : 2.fc40
URL : https://github.com/golang/crypto
Summary : Go supplementary cryptography libraries
Description :
Go supplementary cryptography libraries.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2024-45337
--------------------------------------------------------------------------------
ChangeLog:

* Thu Dec 12 2024 Mikel Olasagasti Uranga [mikel@olasagasti.info] - 0.31.0-2
- Skip failing test for s390x
* Thu Dec 12 2024 Packit [hello@packit.dev] - 0.31.0-1
- Update to 0.31.0 upstream release
- Resolves: rhbz#2324919
* Thu Dec 12 2024 Mark E. Fuller [mark.e.fuller@gmx.de] - 0.30.0-1
- update to v0.30.0
* Thu Dec 12 2024 Mark E. Fuller [mark.e.fuller@gmx.de] - 0.29.0-1
- update to v0.29.0, close rhbz#2324919
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2331954 - CVE-2024-45337 golang-x-crypto: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2331954
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-8f83d0ed92' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 40 Update: kernel-headers-6.12.4-100.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-811cffc4ef
2024-12-16 02:29:18.629389+00:00
--------------------------------------------------------------------------------

Name : kernel-headers
Product : Fedora 40
Version : 6.12.4
Release : 100.fc40
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 9 2024 Justin M. Forbes [jforbes@fedoraproject.org] - 6.12.4-1
- Linux v6.12.4
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-811cffc4ef' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 40 Update: thunderbird-128.5.2-1.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9b2a9cdf0b
2024-12-16 02:29:18.629394+00:00
--------------------------------------------------------------------------------

Name : thunderbird
Product : Fedora 40
Version : 128.5.2
Release : 1.fc40
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.

--------------------------------------------------------------------------------
Update Information:

Update to 128.5.2
https://www.thunderbird.net/en-US/thunderbird/128.5.2esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-69/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Dec 11 2024 Eike Rathke [erack@redhat.com] - 128.5.2-1
- Update to 128.5.2
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9b2a9cdf0b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 40 Update: kernel-6.12.4-100.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-811cffc4ef
2024-12-16 02:29:18.629389+00:00
--------------------------------------------------------------------------------

Name : kernel
Product : Fedora 40
Version : 6.12.4
Release : 100.fc40
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 9 2024 Justin M. Forbes [jforbes@fedoraproject.org] [6.12.4-0]
- Fix up QCOM_EMAC config for Fedora (Justin M. Forbes)
- wifi: rtl8xxxu: add more missing rtl8192cu USB IDs (Hans de Goede)
- Linux v6.12.4
* Fri Dec 6 2024 Justin M. Forbes [jforbes@fedoraproject.org] [6.12.3-0]
- Linux v6.12.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-811cffc4ef' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 40 Update: bpftool-7.5.0-1.fc40

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-811cffc4ef
2024-12-16 02:29:18.629389+00:00
--------------------------------------------------------------------------------

Name : bpftool
Product : Fedora 40
Version : 7.5.0
Release : 1.fc40
URL : https://github.com/libbpf/bpftool
Summary : Inspection and simple manipulation of eBPF programs and maps
Description :
This package contains the bpftool, which allows inspection and simple
manipulation of eBPF programs and maps.

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov 21 2024 Viktor Malik [vmalik@redhat.com] - 7.5.0-1
- Create the package
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-811cffc4ef' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: golang-x-crypto-0.31.0-2.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-c33c95804e
2024-12-16 02:22:40.189137+00:00
--------------------------------------------------------------------------------

Name : golang-x-crypto
Product : Fedora 41
Version : 0.31.0
Release : 2.fc41
URL : https://github.com/golang/crypto
Summary : Go supplementary cryptography libraries
Description :
Go supplementary cryptography libraries.

--------------------------------------------------------------------------------
Update Information:

Fix CVE-2024-45337
--------------------------------------------------------------------------------
ChangeLog:

* Thu Dec 12 2024 Mikel Olasagasti Uranga [mikel@olasagasti.info] - 0.31.0-2
- Skip failing test for s390x
* Thu Dec 12 2024 Packit [hello@packit.dev] - 0.31.0-1
- Update to 0.31.0 upstream release
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2331980 - CVE-2024-45337 golang-x-crypto: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2331980
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-c33c95804e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: kernel-headers-6.12.4-200.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9fb3492511
2024-12-16 02:22:40.189125+00:00
--------------------------------------------------------------------------------

Name : kernel-headers
Product : Fedora 41
Version : 6.12.4
Release : 200.fc41
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 9 2024 Justin M. Forbes [jforbes@fedoraproject.org] - 6.12.4-1
- Linux v6.12.4
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9fb3492511' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: kernel-6.12.4-200.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9fb3492511
2024-12-16 02:22:40.189125+00:00
--------------------------------------------------------------------------------

Name : kernel
Product : Fedora 41
Version : 6.12.4
Release : 200.fc41
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Dec 9 2024 Justin M. Forbes [jforbes@fedoraproject.org] [6.12.4-0]
- Fix up QCOM_EMAC config for Fedora (Justin M. Forbes)
- wifi: rtl8xxxu: add more missing rtl8192cu USB IDs (Hans de Goede)
- Linux v6.12.4
* Fri Dec 6 2024 Justin M. Forbes [jforbes@fedoraproject.org] [6.12.3-0]
- Linux v6.12.3
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9fb3492511' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 41 Update: bpftool-7.5.0-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9fb3492511
2024-12-16 02:22:40.189125+00:00
--------------------------------------------------------------------------------

Name : bpftool
Product : Fedora 41
Version : 7.5.0
Release : 1.fc41
URL : https://github.com/libbpf/bpftool
Summary : Inspection and simple manipulation of eBPF programs and maps
Description :
This package contains the bpftool, which allows inspection and simple
manipulation of eBPF programs and maps.

--------------------------------------------------------------------------------
Update Information:

The 6.12.4 stable kernel rebase contains new features, additional hardware
support and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov 21 2024 Viktor Malik [vmalik@redhat.com] - 7.5.0-1
- Create the package
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2322092 - CVE-2024-50067 kernel: uprobe: avoid out-of-bounds memory access of fetching args [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2322092
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9fb3492511' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--