Fedora Linux 42 has received important security updates for two packages: mingw-poppler and c-ares. The mingw-poppler library, which is used for handling PDF documents in Windows applications, has been updated to version 24.08.0-4.fc42. This update addresses two security vulnerabilities identified as CVE-2025-32364 and CVE-2025-32365, which involve out-of-bounds reads and floating-point exceptions. Users can install this update via the command line using the DNF package manager.
Similarly, Fedora 40 also received updates for mingw-poppler (version 24.02.0-5.fc40) and c-ares (version 1.34.5-1.fc40). The mingw-poppler update for Fedora 40 addresses the same vulnerabilities as the Fedora 42 update. The c-ares library, which provides asynchronous DNS operations, was updated to fix a security issue identified as CVE-2025-31498.
To install these updates, users can execute specific commands in the terminal. All packages are securely signed with the Fedora Project GPG key, ensuring their authenticity.
Extended Summary:
The updates reflect Fedora's commitment to maintaining a secure operating environment by promptly addressing potential vulnerabilities in widely used libraries. Users are encouraged to regularly check for updates and apply them as necessary to protect their systems from security threats. Additionally, the Fedora community continuously monitors and responds to emerging vulnerabilities, showcasing a proactive approach to security in open-source software development. Users can access more information on security updates and best practices for maintaining system integrity through Fedora's documentation and community forums
Similarly, Fedora 40 also received updates for mingw-poppler (version 24.02.0-5.fc40) and c-ares (version 1.34.5-1.fc40). The mingw-poppler update for Fedora 40 addresses the same vulnerabilities as the Fedora 42 update. The c-ares library, which provides asynchronous DNS operations, was updated to fix a security issue identified as CVE-2025-31498.
To install these updates, users can execute specific commands in the terminal. All packages are securely signed with the Fedora Project GPG key, ensuring their authenticity.
Extended Summary:
The updates reflect Fedora's commitment to maintaining a secure operating environment by promptly addressing potential vulnerabilities in widely used libraries. Users are encouraged to regularly check for updates and apply them as necessary to protect their systems from security threats. Additionally, the Fedora community continuously monitors and responds to emerging vulnerabilities, showcasing a proactive approach to security in open-source software development. Users can access more information on security updates and best practices for maintaining system integrity through Fedora's documentation and community forums
MinGW-Poppler and C-Ares updates for Fedora 42
Fedora Linux 42 has been updated with security enhancements, including mingw-poppler and c-ares:
Fedora 42 Update: mingw-poppler-24.08.0-4.fc42
Fedora 40 Update: mingw-poppler-24.02.0-5.fc40
Fedora 40 Update: c-ares-1.34.5-1.fc40MinGW-Poppler and C-Ares updates for Fedora 42 @ Linux Compatible
