Fedora Security Advisories

nix-2.34.5-1.fc44

Fedora Security Advisories
1 hour 30 minutes ago
FEDORA-2026-8c7366e046 Packages in this update:
  • nix-2.34.5-1.fc44
Update description:
  • update to 2.34
  • https://nix.dev/manual/nix/2.34/release-notes/rl-2.33.html
  • https://nix.dev/manual/nix/2.34/release-notes/rl-2.34.html
  • includes fix for nix-daemon critical GHSA-g3g9-5vj6-r3gj (CVE-2026-39860)

moby-engine-29.4.0-1.fc42

Fedora Security Advisories
9 hours 49 minutes ago
FEDORA-2026-49fd0d9636 Packages in this update:
  • moby-engine-29.4.0-1.fc42
Update description:
  • Update to release v29.4.0
  • Resolves: rhbz#2455894
  • Resolves CVE-2026-34986: rhbz#2455665
  • Upstream new features and fixes

moby-engine-29.4.0-1.fc43

Fedora Security Advisories
10 hours 27 minutes ago
FEDORA-2026-a5015b57b9 Packages in this update:
  • moby-engine-29.4.0-1.fc43
Update description:
  • Update to release v29.4.0
  • Resolves: rhbz#2455894
  • Resolves CVE-2026-34986: rhbz#2455665
  • Upstream new features and fixes

moby-engine-29.4.0-1.fc44

Fedora Security Advisories
10 hours 44 minutes ago
FEDORA-2026-853a2fa7e5 Packages in this update:
  • moby-engine-29.4.0-1.fc44
Update description:
  • Update to release v29.4.0
  • Resolves: rhbz#2455894
  • Resolves CVE-2026-34986: rhbz#2455665
  • Upstream new features and fixes

moby-engine-29.4.0-1.fc45

Fedora Security Advisories
11 hours 35 minutes ago
FEDORA-2026-e520168745 Packages in this update:
  • moby-engine-29.4.0-1.fc45
Update description:

Automatic update for moby-engine-29.4.0-1.fc45.

Changelog * Tue Apr 7 2026 Bradley G Smith <bradley.g.smith@gmail.com> - 29.4.0-1 - Update to release v29.4.0 - Resolves: rhbz#2455894 - Resolves CVE-2026-34986: rhbz#2455665 - Upstream new features and fixes

libpng-1.6.56-1.fc44

Fedora Security Advisories
1 day 2 hours ago
FEDORA-2026-c6c617fe35 Packages in this update:
  • libpng-1.6.56-1.fc44
Update description:

1.6.56 is release fixes for the following two security vulnerabilities:

  • CVE-2026-33416 (high severity): Use-after-free memory bug in the transparency and palette-handling code. Similar to its predecessor CVE-2026-25646, this latent bug has existed for 25 years. Both Halil Oktay and Ryo Shimada discovered it within days of one another.

  • CVE-2026-33636 (high severity): Out-of-bounds read and write vulnerability in the ARM Neon palette-expansion code. This one was found and fixed by Taegu Ha and has existed since 1.6.36.

The images that trigger these bugs are valid. Users are encouraged to update immediately.

libpng-1.6.56-1.fc43

Fedora Security Advisories
1 day 2 hours ago
FEDORA-2026-67c20bfb74 Packages in this update:
  • libpng-1.6.56-1.fc43
Update description:

1.6.56 is release fixes for the following two security vulnerabilities:

  • CVE-2026-33416 (high severity): Use-after-free memory bug in the transparency and palette-handling code. Similar to its predecessor CVE-2026-25646, this latent bug has existed for 25 years. Both Halil Oktay and Ryo Shimada discovered it within days of one another.

  • CVE-2026-33636 (high severity): Out-of-bounds read and write vulnerability in the ARM Neon palette-expansion code. This one was found and fixed by Taegu Ha and has existed since 1.6.36.

The images that trigger these bugs are valid. Users are encouraged to update immediately.

Checked
41 minutes 26 seconds ago
URL
https://bodhi.fedoraproject.org/rss/updates/?type=security