Fedora Security Advisories

FEDORA-2025-0fc373e72b Packages in this update:

• NetworkManager-1.54.3-1.fc43

Update description:

Update to 1.54.3 Partially fixes CVE-2025-9615. To protect totally from it, see: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/2325.

FEDORA-2025-27f16898ba Packages in this update:

• NetworkManager-1.52.2-1.fc42

Update description:

Update to 1.52.2 Partially fixes CVE-2025-9615. To protect totally from it, see: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/2325.

FEDORA-2025-0f4b31c58e Packages in this update:

• assimp-6.0.2-4.fc43

Update description:

Backport fix for CVE-2025-11277

FEDORA-2025-6c78aad721 Packages in this update:

• mingw-libsoup-2.74.3-14.fc42

Update description:

Backport fix for CVE-2025-11021.

FEDORA-2025-5a82449616 Packages in this update:

• mingw-libsoup-2.74.3-14.fc43

Update description:

Backport fix for CVE-2025-11021.

FEDORA-2025-883181272e Packages in this update:

• mingw-python3-3.11.14-4.fc43

Update description:

Backport fix for CVE-2025-12084.

FEDORA-2025-34626c05f6 Packages in this update:

• mingw-python3-3.11.14-4.fc42

Update description:

Backport fix for CVE-2025-12084.

FEDORA-2025-ecdc29aa34 Packages in this update:

• mingw-glib2-2.86.3-1.fc43

Update description:

Update to 2.86.3, fixes CVE-2025-13601, CVE-2025-14087 and CVE-2025-14512.

FEDORA-2025-b2df36b70a Packages in this update:

• mingw-glib2-2.84.4-1.fc42

Update description:

Update to glib-2.84.4 and backport fixes for CVE-2025-13601, CVE-2025-14087 and CVE-2025-14512.

FEDORA-EPEL-2025-69e9a501c7 Packages in this update:

• chromium-143.0.7499.109-2.el9

Update description:

Update to 143.0.7499.109

* High: Under coordination * Medium CVE-2025-14372: Use after free in Password Manager * Medium CVE-2025-14373: Inappropriate implementation in Toolbar

FEDORA-2025-a315866a59 Packages in this update:

• chromium-143.0.7499.109-2.fc42

Update description:

Update to 143.0.7499.109

* High: Under coordination * Medium CVE-2025-14372: Use after free in Password Manager * Medium CVE-2025-14373: Inappropriate implementation in Toolbar

FEDORA-EPEL-2025-fdf05692b5 Packages in this update:

• chromium-143.0.7499.109-2.el10_2

Update description:

Update to 143.0.7499.109

* High: Under coordination * Medium CVE-2025-14372: Use after free in Password Manager * Medium CVE-2025-14373: Inappropriate implementation in Toolbar

FEDORA-2025-1077c09b50 Packages in this update:

• chromium-143.0.7499.109-2.fc43

Update description:

Update to 143.0.7499.109

* High: Under coordination * Medium CVE-2025-14372: Use after free in Password Manager * Medium CVE-2025-14373: Inappropriate implementation in Toolbar

FEDORA-2025-c7fd6acdf6 Packages in this update:

• pgadmin4-9.11-1.fc43

Update description:

Update to pgadmin-9.11, fixes CVE_2025-13780.

FEDORA-2025-b08763f674 Packages in this update:

• pgadmin4-9.11-1.fc42

Update description:

Update to pgadmin-9.11, fixes CVE_2025-13780.

FEDORA-2025-da6d092209 Packages in this update:

• mingw-libpng-1.6.53-1.fc43

Update description:

Update to libpng-1.6.53, fixes CVE-2025-66293 and CVE-2025-64505.

FEDORA-2025-dbd70402f4 Packages in this update:

• mingw-libpng-1.6.53-1.fc42

Update description:

Update to libpng-1.6.53, fixes CVE-2025-66293 and CVE-2025-64505.

FEDORA-2025-7c468696d2 Packages in this update:

• moby-engine-29.1.3-1.fc41

Update description:

• Update to release v29.1.3
• Resolves: rhbz#2417969
• Resolves CVE-2024-25621: rhbz#2419019, rhbz#2419046, rhbz#2419442
• Upstream new features and fixes

FEDORA-EPEL-2025-58be015476 Packages in this update:

• python38-ldap-epel-3.4.3-2.el8

Update description:

Apply upstream fix for CVE-2025-61911 CVE-205-61912'

FEDORA-EPEL-2025-b6fbc3fa28 Packages in this update:

• python39-ldap-epel-3.4.3-2.el8

Update description:

Apply upstream fix for CVE-2025-61911 CVE-205-61912'