Fedora Linux 8815 Published by

The following security updates have been released for Fedora Linux 39:

Fedora 39 Update: libreoffice-7.6.7.2-1.fc39
Fedora 39 Update: chromium-125.0.6422.76-1.fc39
Fedora 39 Update: thunderbird-115.11.0-1.fc39




Fedora 39 Update: libreoffice-7.6.7.2-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-7989718224
2024-05-24 01:03:40.444837
--------------------------------------------------------------------------------

Name : libreoffice
Product : Fedora 39
Version : 7.6.7.2
Release : 1.fc39
URL : https://www.libreoffice.org/
Summary : Free Software Productivity Suite
Description :
LibreOffice is an Open Source, community-developed, office productivity suite.
It includes the key desktop applications, such as a word processor,
spreadsheet, presentation manager, formula editor and drawing program, with a
user interface and feature set similar to other office suites. Sophisticated
and flexible, LibreOffice also works transparently with a variety of file
formats, including Microsoft Office File Formats.

--------------------------------------------------------------------------------
Update Information:

7.6.7.2
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 20 2024 Gwyn Ciesla [gwync@protonmail.com] - 1:7.6.7.2-1
- 7.6.7.2
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2280543 - CVE-2024-3044 libreoffice: reate a document which without prompt will execute scripts built-into LibreOffice on clicking a graphic [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2280543
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-7989718224' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: chromium-125.0.6422.76-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-87bb7ffab1
2024-05-24 01:03:40.444845
--------------------------------------------------------------------------------

Name : chromium
Product : Fedora 39
Version : 125.0.6422.76
Release : 1.fc39
URL : http://www.chromium.org/Home
Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use
Description :
Chromium is an open-source web browser, powered by WebKit (Blink).

--------------------------------------------------------------------------------
Update Information:

update to 125.0.6422.76
* High CVE-2024-5157: Use after free in Scheduling
* High CVE-2024-5158: Type Confusion in V8
* High CVE-2024-5159: Heap buffer overflow in ANGLE
* High CVE-2024-5160: Heap buffer overflow in Dawn
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 22 2024 Than Ngo [than@redhat.com] - 125.0.6422.76-1
- fix bz#2282246, update to 125.0.6422.76
* High CVE-2024-5157: Use after free in Scheduling
* High CVE-2024-5158: Type Confusion in V8
* High CVE-2024-5159: Heap buffer overflow in ANGLE
* High CVE-2024-5160: Heap buffer overflow in Dawn
- cleanup
* Mon May 20 2024 Than Ngo [than@redhat.com] - 125.0.6422.60-3
- remove unneeded BRs
- workarounds for el7 build
* Sun May 19 2024 Than Ngo [than@redhat.com] - 125.0.6422.60-2
- fix build errors on el7
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2282246 - 125.0.6422.76 available, fixes multiple High CVES
https://bugzilla.redhat.com/show_bug.cgi?id=2282246
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-87bb7ffab1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: thunderbird-115.11.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-5d7c339890
2024-05-24 01:03:40.444823
--------------------------------------------------------------------------------

Name : thunderbird
Product : Fedora 39
Version : 115.11.0
Release : 1.fc39
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.

--------------------------------------------------------------------------------
Update Information:

Update to 115.11.0
https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/
https://www.thunderbird.net/en-US/thunderbird/115.11.0/releasenotes/
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 14 2024 Eike Rathke [erack@redhat.com] - 115.11.0-1
- Update to 115.11.0
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-5d7c339890' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--