Fedora Security Advisories

FEDORA-EPEL-2026-6d1b80ec2d Packages in this update:

• libgsasl-1.8.0-9.el8

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-EPEL-2026-d6403f9920 Packages in this update:

• libgsasl-1.10.0-15.el9

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-2026-5317df36be Packages in this update:

• libgsasl-1.10.0-15.fc43

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-2026-5868a8d652 Packages in this update:

• libgsasl-1.10.0-15.fc44

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-EPEL-2026-bcb9d58e1c Packages in this update:

• libgsasl-1.10.0-15.el10_3

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-EPEL-2026-d88dd5b3ef Packages in this update:

• libgsasl-1.10.0-15.el10_2

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-EPEL-2026-85123c62f6 Packages in this update:

• libgsasl-1.10.0-15.el10_1

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-2026-1594a9755b Packages in this update:

• python-pycparser-2.22-8.fc44

Update description:

Remove unsafe dead code (CVE-2025-56005) from the bundled ply

FEDORA-2026-a8d6c7c064 Packages in this update:

• libgsasl-1.10.0-15.fc42

Update description:

GSSAPI server: Boundary check gss_wrap token (read OOB)

FEDORA-2026-a026a1b0c5 Packages in this update:

• firefox-149.0-4.fc42

Update description:

• Fix blurry popups on some fraction scales (mzbz#2019668)

FEDORA-2026-1fb0e26534 Packages in this update:

• python3.9-3.9.25-7.fc45

Update description:

Automatic update for python3.9-3.9.25-7.fc45.

Changelog * Thu Mar 26 2026 Lumír Balhar <lbalhar@redhat.com> - 3.9.25-7 - Security fix for CVE-2026-4519 (rhbz#2449735)

FEDORA-2026-0ff49872ae Packages in this update:

• python3.9-3.9.25-7.fc42

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-f7b3ebe324 Packages in this update:

• python3.9-3.9.25-7.fc44

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-1e87d53608 Packages in this update:

• python3.9-3.9.25-7.fc43

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-304f76c660 Packages in this update:

• python3.12-3.12.13-2.fc43

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-9c8d7e5c9a Packages in this update:

• python3.12-3.12.13-2.fc44

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-e8c06584a9 Packages in this update:

• python3.12-3.12.13-2.fc42

Update description:

Security fix for CVE-2026-4519.

FEDORA-2026-15f71c015c Packages in this update:

• python3.12-3.12.13-2.fc45

Update description:

Automatic update for python3.12-3.12.13-2.fc45.

Changelog * Thu Mar 26 2026 Lumír Balhar <lbalhar@redhat.com> - 3.12.13-2 - Security fix for CVE-2026-4519 (rhbz#2449728)

FEDORA-2026-19d899e92d Packages in this update:

• bind-9.18.47-1.fc44
• bind-dyndb-ldap-11.11-13.fc44

Update description: Update to 9.18.47 (rhbz#2440561) Security Fixes:

• Fix unbounded NSEC3 iterations when validating referrals to unsigned delegations. (CVE-2026-1519)

Source: https://downloads.isc.org/isc/bind9/9.18.47/doc/arm/html/notes.html#notes-for-bind-9-18-47

FEDORA-2026-b2ec0d8a47 Packages in this update:

• bind-9.18.47-1.fc43
• bind-dyndb-ldap-11.11-11.fc43

Update description: Update to 9.18.47 (rhbz#2440561) Security Fixes:

• Fix unbounded NSEC3 iterations when validating referrals to unsigned delegations. (CVE-2026-1519)

Source: https://downloads.isc.org/isc/bind9/9.18.47/doc/arm/html/notes.html#notes-for-bind-9-18-47