Fedora Glow 2.1.2 Update Addresses Multiple CVEs

Fedora Glow 2.1.2 Update Addresses Multiple CVEs

First seen 1 May 2026, 08:03 UTC Linuxsecurity 98% similarity 57.9

Article Content

Browse articles
ThreatCluster

On May 1, 2026, Fedora released an update for Glow, a terminal-based markdown reader, to version 2.1.2. This update addresses several critical vulnerabilities, including CVE-2026-5160, which was published on April 15, 2026, and involves an update to the vendored goldmark dependency. Other vulnerabilities fixed include CVE-2025-61723 and CVE-2025-58189, both published on October 29, 2025, and CVE-2025-47910 and CVE-2025-47906, published on September 22 and 18, 2025, respectively. The update also includes improvements from the latest golang version to mitigate additional CVEs. Users are advised to upgrade using the 'dnf' update program to ensure their systems are secure. The update is crucial for maintaining the integrity and security of systems using Glow. The vulnerabilities could potentially expose sensitive information or allow unauthorized access if left unpatched.

Key Points: • Fedora Glow 2.1.2 update fixes multiple critical CVEs. • CVE-2026-5160 was published on April 15, 2026. • Users should upgrade using 'dnf' to mitigate vulnerabilities.

ThreatCluster AI

Timeline

2025-09-18
CVE-2025-47906 published
2025-09-22
CVE-2025-47910 published
2025-10-29
CVE-2025-61723 and CVE-2025-58189 published
2026-01-26
CVE-2025-11065 published
2026-04-15
CVE-2026-5160 published
2026-05-01
Fedora Glow 2.1.2 update released

Community

Browse all →