Fedora Security Advisories

FEDORA-2026-5e16254ca6 Packages in this update:

• gst-devtools-1.26.11-1.fc42
• gst-editing-services-1.26.11-1.fc42
• gstreamer1-1.26.11-1.fc42
• gstreamer1-doc-1.26.11-1.fc42
• gstreamer1-plugin-libav-1.26.11-1.fc42
• gstreamer1-plugins-bad-free-1.26.11-1.fc42
• gstreamer1-plugins-base-1.26.11-1.fc42
• gstreamer1-plugins-good-1.26.11-1.fc42
• gstreamer1-plugins-ugly-free-1.26.11-1.fc42
• gstreamer1-rtsp-server-1.26.11-1.fc42
• gstreamer1-vaapi-1.26.11-1.fc42
• python-gstreamer1-1.26.11-1.fc42

Update description:

1.26.11

FEDORA-2026-6ff3ef2d32 Packages in this update:

• goose-1.23.2-8.fc44

Update description:

Update goose to fix fedora#2449678

FEDORA-2026-a45f438402 Packages in this update:

• goose-1.23.2-7.fc43

Update description:

Update goose to fix fedora#2449678

FEDORA-2026-f0293b845e Packages in this update:

• rauc-1.15.2-1.fc43

Update description:

version bumped from 1.15.1 to 1.15.2

FEDORA-2026-17dbeca425 Packages in this update:

• rauc-1.15.2-1.fc44

Update description:

version bumped from 1.15.1 to 1.15.2

FEDORA-2026-e77ad9d792 Packages in this update:

• gst-devtools-1.26.11-1.fc43
• gst-editing-services-1.26.11-1.fc43
• gstreamer1-1.26.11-1.fc43
• gstreamer1-doc-1.26.11-1.fc43
• gstreamer1-plugin-libav-1.26.11-1.fc43
• gstreamer1-plugins-bad-free-1.26.11-1.fc43
• gstreamer1-plugins-base-1.26.11-1.fc43
• gstreamer1-plugins-good-1.26.11-1.fc43
• gstreamer1-plugins-ugly-free-1.26.11-1.fc43
• gstreamer1-rtsp-server-1.26.11-1.fc43
• gstreamer1-vaapi-1.26.11-1.fc43
• python-gstreamer1-1.26.11-1.fc43

Update description:

1.26.11

FEDORA-EPEL-2026-01ea52d899 Packages in this update:

• kea-2.6.5-1.el9

Update description:

• New version 2.6.5
• Fixes CVE-2026-3608 (rhbz#2452134)

FEDORA-2026-66f19b11e0 Packages in this update:

• kea-3.0.3-1.fc42

Update description:

• New version 3.0.3 (rhbz#2451141)
• Fixes CVE-2026-3608 (rhbz#2451621)

FEDORA-2026-04263e2a5b Packages in this update:

• kea-3.0.3-1.fc43

Update description:

• New version 3.0.3 (rhbz#2451141)
• Fixes CVE-2026-3608 (rhbz#2451621)

FEDORA-2026-2b21a4dafe Packages in this update:

• kea-3.0.3-1.fc44

Update description:

• New version 3.0.3 (rhbz#2451141)
• Fixes CVE-2026-3608 (rhbz#2451621)

FEDORA-2026-11e168602c Packages in this update:

• kea-3.0.3-1.fc45

Update description:

Automatic update for kea-3.0.3-1.fc45.

Changelog * Thu Mar 26 2026 Martin Osvald <mosvald@redhat.com> - 3.0.3-1 - New version 3.0.3 (rhbz#2451141) - Fixes CVE-2026-3608 (rhbz#2451621)

FEDORA-2026-ca43aa006f Packages in this update:

• nextcloud-33.0.1-1.fc42

Update description:

33.0.1 release

FEDORA-EPEL-2026-35986c0192 Packages in this update:

• nextcloud-33.0.1-1.el10_1

Update description:

33.0.1 release

FEDORA-2026-9cc418c23e Packages in this update:

• calibre-9.6.0-1.fc43

Update description:

Update to 9.6.0. Fixes rhbz#2452087

FEDORA-2026-7de23151cd Packages in this update:

• calibre-9.6.0-1.fc44

Update description:

Update to 9.6.0. Fixes rhbz#2452087

FEDORA-2026-f00460a7d9 Packages in this update:

• webkitgtk-2.52.1-1.fc44

Update description:

Update to 2.52.1:

• Reduce the amount of useless MPRIS notifications produced by MediaSesion when the information about media being played is incomplete.
• Add Sysprof marks for mouse events.
• Fix MediaSession icon for iheart.com not being displayed.
• Fix several crashes and rendering issues.
• Translation updates: Georgian.

Update to 2.52.0:

• Make text look like in other browsers by blending in linear color space.
• Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.
• Improved composition scheduling to avoid blocking waiting for tile painting.
• Improved performance of accelerated 2D canvas by recording operations for batched replay.
• Improved async scrolling when main thread is busy by avoiding locks and rendering the scrollbars from the scrolling thread.
• Enabled dynamic MSAA for accelerated 2D canvas rendering.
• Improved text rendering performance
• Videos with BT2100-PQ colorspace are now tone-mapped to SDR, ensuring colours do not appear washed out.
• Added support for the Audio Output Devices API.
• Added API to handle WebXR permission requests.
• Added API to query the immersive session status.
• Added initial API for web extensions.

2.51.93:

• Make text look like in other browsers by blending in linear color space.
• Avoid composition for non visible layers with running animations.
• Fix several crashes and rendering issues.

2.51.92:

• Fix PDF rendering broken by the accelerated 2D canvas performance improvements.
• Fix flickering while scrolling in some edge cases.
• Support for rotation and mirroring in internal WebCodecs encoder.
• System fallback font selection no longer takes style into account.
• Fix several crashes and rendering issues.

FEDORA-2026-054c0e22d1 Packages in this update:

• polkit-127-2.fc44.2

Update description:

CVE-2026-4897 aisle.com fix of unsanitized getline

FEDORA-2026-387a47c82b Packages in this update:

• polkit-126-6.fc43.2

Update description:

CVE-2026-4897 aisle.com fix of unsanitized getline

FEDORA-2026-1774635f74 Packages in this update:

• polkit-126-3.fc42.2

Update description:

CVE-2026-4897 aisle.com fix of unsanitized getline

FEDORA-2026-f47b1861e4 Packages in this update:

• rust-1.94.1-1.fc42

Update description:

Update to 1.94.1