Fedora Security Advisories

FEDORA-2025-4453f596a8 Packages in this update:

• varnish-7.5.0-3.fc41

Update description:

Security: This update includes fix for VSV00015 aka CVE-2025-30346. Upstream considers this a low risk problem. For details, refer to https://varnish-cache.org/security/VSV00015.html

FEDORA-2025-c55f39aeb3 Packages in this update:

• corosync-3.1.9-2.fc41

Update description:

Security fix for CVE-2025-30472

FEDORA-2025-a350309ddb Packages in this update:

• corosync-3.1.9-3.fc42

Update description:

Security fix for CVE-2025-30472

FEDORA-2025-5fa61dc843 Packages in this update:

• suricata-7.0.10-1.fc41

Update description:

This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed.

Various security, performance, accuracy, and stability issues have been fixed. LibHTP has been updated to version 0.5.50 which is bundled with this new release. This fixes:

CVE-2025-29915: HIGH CVE-2025-29917: HIGH CVE-2025-29918: HIGH CVE-2025-29916: Moderate

FEDORA-EPEL-2025-811cbc0ed6 Packages in this update:

• suricata-7.0.10-1.el8

Update description:

This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed.

Various security, performance, accuracy, and stability issues have been fixed. LibHTP has been updated to version 0.5.50 which is bundled with this new release. This fixes:

CVE-2025-29915: HIGH CVE-2025-29917: HIGH CVE-2025-29918: HIGH CVE-2025-29916: Moderate

FEDORA-EPEL-2025-46a02bfa95 Packages in this update:

• suricata-7.0.10-1.el9

Update description:

This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed.

Various security, performance, accuracy, and stability issues have been fixed. LibHTP has been updated to version 0.5.50 which is bundled with this new release. This fixes:

CVE-2025-29915: HIGH CVE-2025-29917: HIGH CVE-2025-29918: HIGH CVE-2025-29916: Moderate

FEDORA-2025-2a295896e6 Packages in this update:

• suricata-7.0.10-1.fc40

Update description:

This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed.

Various security, performance, accuracy, and stability issues have been fixed. LibHTP has been updated to version 0.5.50 which is bundled with this new release. This fixes:

CVE-2025-29915: HIGH CVE-2025-29917: HIGH CVE-2025-29918: HIGH CVE-2025-29916: Moderate

FEDORA-2025-a9e7d63dc7 Packages in this update:

• suricata-7.0.10-1.fc42

Update description:

This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed.

Various security, performance, accuracy, and stability issues have been fixed. LibHTP has been updated to version 0.5.50 which is bundled with this new release. This fixes:

CVE-2025-29915: HIGH CVE-2025-29917: HIGH CVE-2025-29918: HIGH CVE-2025-29916: Moderate

FEDORA-2025-dbeb2c60c3 Packages in this update:

• nextcloud-31.0.2-2.fc40

Update description:

31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414

FEDORA-2025-9e6b55e70b Packages in this update:

• nextcloud-31.0.2-1.fc41

Update description:

31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414

FEDORA-2025-381c988800 Packages in this update:

• nextcloud-31.0.2-1.fc42

Update description:

31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414

FEDORA-2025-ebd5b65ce8 Packages in this update:

• nextcloud-31.0.2-1.fc43

Update description:

Automatic update for nextcloud-31.0.2-1.fc43.

Changelog * Tue Mar 25 2025 Andrew Bauer <zonexpertconsulting@outlook.com> - 31.0.2-1 - 31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414

FEDORA-2025-b7f0c55e00 Packages in this update:

• varnish-7.6.1-5.fc42

Update description:

Security: This update includes fix for VSV00015 aka CVE-2025-30346. Upstream considers this a low risk problem. For details, refer to https://varnish-cache.org/security/VSV00015.html.

FEDORA-2025-12f2e3e40b Packages in this update:

• dokuwiki-20240206b-1.fc42
• php-kissifrot-php-ixr-1.8.4-1.fc42
• php-phpseclib3-3.0.43-1.fc42

Update description:

Update DokuWiki to release 2024-02-06b "Kaos", update dependencies accordingly

FEDORA-2025-0ec100da82 Packages in this update:

• dokuwiki-20240206b-1.fc43
• php-kissifrot-php-ixr-1.8.4-1.fc43
• php-phpseclib3-3.0.43-1.fc43

Update description:

Update DokuWiki to release 2024-02-06b "Kaos", update dependencies accordingly

FEDORA-2025-d75bc3d211 Packages in this update:

• exim-4.98.1-1.fc42

Update description:

This is new version fixing possible remote SQL injection and FTBFS with gcc-15.

FEDORA-2025-31036092ea Packages in this update:

• augeas-1.14.2-0.4.20250324git4dffa3d.fc40

Update description:

CVE-2025-2588

FEDORA-2025-117fe4c81f Packages in this update:

• augeas-1.14.2-0.4.20250324git4dffa3d.fc41

Update description:

CVE-2025-2588

FEDORA-2025-6b5c54bd05 Packages in this update:

• augeas-1.14.2-0.4.20250324git4dffa3d.fc42

Update description:

CVE-2025-2588

FEDORA-EPEL-2025-1f39c6fc05 Packages in this update:

• uriparser-0.9.8-2.el8

Update description:

Update to uriparser-0.9.8.