stable

glibc-2.42-9.fc43

FEDORA-2026-205d532069 created by fweimer a month ago for Fedora 43

This update switches the currency symbol for Bulgaria to the Euro.

Furthermore, it addresses several security vulnerabilities:

  • A crash when wordexp is used with WRDE_REUSE (CVE-2025-15281)
  • Information leakage from the stack if getnetbyaddr is called for the zero address (CVE-2026-0915)
  • An integer overflow in memalign and related functions if they are called with out-of-bounds size/alignment combinations (CVE-2026-0861)
  • LD_PROFILE is now ignored with a warning if LD_PROFILE_OUTPUT is not specified, rather than using the insecure /var/tmp default.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2026-205d532069

This update has been submitted for testing by fweimer.

a month ago

This update's test gating status has been changed to 'waiting'.

a month ago

This update's test gating status has been changed to 'waiting'.

a month ago

This update's test gating status has been changed to 'passed'.

a month ago
User Icon imabug provided feedback a month ago
karma

This update has been pushed to testing.

a month ago
User Icon nixuser commented & provided feedback a month ago
karma

Seems OK here.

This update can be pushed to stable now if the maintainer wishes

a month ago
User Icon g6avk commented & provided feedback a month ago
karma

Works for me..

This update has been submitted for stable by bodhi.

a month ago
User Icon besser82 commented & provided feedback a month ago
karma

Works great! LGTM! =)

User Icon markec provided feedback a month ago
karma
User Icon bojan commented & provided feedback a month ago
karma

Works.

User Icon geraldosimiao provided feedback a month ago
karma

This update has been pushed to stable.

a month ago

Please log in to add feedback.

Metadata
Type
security
Severity
low
Karma
7
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
a month ago
in testing
a month ago
in stable
a month ago
approved
a month ago
Builds
1
glibc-2.42-9.fc43
BZ#2429016 glibc: Bulgaria joined the eurozone
0
0
BZ#2430078 CVE-2026-0861 glibc: Integer overflow in memalign leads to heap corruption [fedora-43]
0
0
BZ#2430321 CVE-2026-0915 glibc: glibc: Information disclosure via zero-valued network query [fedora-43]
0
0
BZ#2431281 CVE-2025-15281 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory [fedora-43]
0
0
BZ#2432405 glibc: Ignore LD_PROFILE if LD_PROFILE_OUTPUT is not set
0
0
glibc-2.42-9.fc43

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-20-hkkgf.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy