Fedora Security Advisories

FEDORA-EPEL-2026-2fffa84f40 Packages in this update:

• GitPython-3.1.49-1.el10_1

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-EPEL-2026-10d594fc6f Packages in this update:

• GitPython-3.1.49-1.el10_2

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-EPEL-2026-e52bb6f7dd Packages in this update:

• GitPython-3.1.49-1.el9

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-2026-2e9fe57a46 Packages in this update:

• krb5-1.22.2-7.fc45

Update description:

Automatic update for krb5-1.22.2-7.fc45.

Changelog * Tue Apr 28 2026 Julien Rische <jrische@redhat.com> - 1.22.2-7 - Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356) - resolves: rhbz#2463398 - resolves: rhbz#2463395

FEDORA-EPEL-2026-77c79f5666 Packages in this update:

• GitPython-3.1.49-1.el10_3

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-2026-28c6100d11 Packages in this update:

• GitPython-3.1.49-1.fc42

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-2026-fdbf3705cc Packages in this update:

• GitPython-3.1.49-1.fc43

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-2026-9342da13e0 Packages in this update:

• GitPython-3.1.49-1.fc44

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67.

FEDORA-EPEL-2026-3c159ac445 Packages in this update:

• GitPython-3.1.48-1.el9

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-EPEL-2026-a9bf30a796 Packages in this update:

• GitPython-3.1.48-1.el10_1

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-EPEL-2026-0832fe494e Packages in this update:

• GitPython-3.1.48-1.el10_2

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-2026-883e88db68 Packages in this update:

• xen-4.21.1-2.fc44

Update description:

oxenstored keeps quota related use counts across domain destruction [XSA-483, CVE-2026-23556] Xenstored DoS via XS_RESET_WATCHES command [XSA-484, CVE-2026-23557] grant table v2 race in status page mapping [XSA-486, CVE-2026-23558] x86: Floating Point Divider State Sampling [XSA-488, CVE-2025-54505]

FEDORA-EPEL-2026-c915864ece Packages in this update:

• GitPython-3.1.48-1.el10_3

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-2026-f03718862a Packages in this update:

• GitPython-3.1.48-1.fc42

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-2026-5034196672 Packages in this update:

• GitPython-3.1.48-1.fc43

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-2026-591e576c12 Packages in this update:

• GitPython-3.1.48-1.fc44

Update description:

Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, and GHSA-7545-fcxq-7j24.

FEDORA-2026-4349d04c20 Packages in this update:

• dovecot-2.4.3-2.fc44

Update description:

updated to 2.4.3 which includes several security fixes

FEDORA-2026-51dba40a65 Packages in this update:

• dovecot-2.4.3-2.fc43

Update description:

updated to 2.4.3 which includes several security fixes

FEDORA-2026-3a2ff381f7 Packages in this update:

• subfinder-2.14.0-1.fc45

Update description:

Automatic update for subfinder-2.14.0-1.fc45.

Changelog * Tue Apr 28 2026 Mikel Olasagasti Uranga <mikel@olasagasti.info> - 2.14.0-1 - Update to 2.14.0 - Closes rhbz#2463149 rhbz#2458997 rhbz#2456046

FEDORA-2026-cf660bc96a Packages in this update:

• forgejo-runner-12.7.3-2.fc43

Update description:

Update vendor dependencies to fix: * CVE-2026-33762 * CVE-2026-33817 * CVE-2026-34165