Read Time:30 Second

FEDORA-2025-8fdb7be3cb

Packages in this update:

libheif-1.19.5-3.fc41

Update description:

Latest upstream release. It adds support for tiles and fixes reading images generated by iOS 18+. See https://github.com/strukturag/libheif/releases for more details about the changes since 1.17.6.

NOTE: heif-convert tool was renamed to heif-dec.

How to test:

Download and unzip sample images from mastodon issue #31570. Try opening them with e.g. loupe or gimp. They fail to open with libheif-1.17.6, but should open successfully with libheif-1.19.5.

Fixes CVE-2024-41311 .

USN-7387-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...

March 28, 2025

USN-7387-3: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...

March 28, 2025

USN-7390-1: Linux kernel (Xilinx ZynqMP) vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker...

March 28, 2025

USN-7389-1: Linux kernel (NVIDIA Tegra) vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker...

March 28, 2025

ghostscript-10.02.1-14.fc40

FEDORA-2025-3a7a29de24 Packages in this update: ghostscript-10.02.1-14.fc40 Update description: CVE-2025-27835 ghostscript: Buffer overflow when converting glyphs to unicode (fedora#2355025) CVE-2025-27834 ghostscript:...

March 28, 2025

ghostscript-10.03.1-5.fc41

FEDORA-2025-47818d27ba Packages in this update: ghostscript-10.03.1-5.fc41 Update description: CVE-2025-27835 ghostscript: Buffer overflow when converting glyphs to unicode (fedora#2355026) CVE-2025-27834 ghostscript:...

March 28, 2025

Trump CISA Cuts Threaten US Election Integrity, Experts Warn

Morphing Meerkat PhaaS Platform Spoofs 100+ Brands

AIs as Trusted Third Parties

CoffeeLoader Malware Loader Linked to SmokeLoader Operations

When Getting Phished Puts You in Mortal Danger

PJobRAT Malware Targets Users in Taiwan via Fake Apps

No MFA? Expect Hefty Fines, UK’s ICO Warns

Chinese Spy Group FamousSparrow Back with a Vengeance, Targets US

A Taxonomy of Adversarial Machine Learning Attacks and Mitigations

libheif-1.19.5-3.fc41

FEDORA-2025-8fdb7be3cb

Packages in this update:

Update description:

How to test:

USN-7387-2: Linux kernel (FIPS) vulnerabilities

USN-7387-3: Linux kernel (Real-time) vulnerabilities

USN-7390-1: Linux kernel (Xilinx ZynqMP) vulnerabilities

USN-7389-1: Linux kernel (NVIDIA Tegra) vulnerabilities

ghostscript-10.02.1-14.fc40

ghostscript-10.03.1-5.fc41