Multiple Security Updates for Fedora Address Critical Vulnerabilities

Fedora has released important updates addressing vulnerabilities in the ldns and python-mistune packages. The ldns library update (CVE-2026-10846), published on June 10, 2026, resolves a significant issue affecting low-level DNS operations. Additionally, python-mistune received a critical update (CVE-2026-44898) on June 18, 2026, which fixes an arbitrary code execution vulnerability due to HTML injection in table of contents rendering. Users of Fedora 43 and 44 are advised to apply these updates promptly to mitigate potential exploitation risks. Both vulnerabilities have been acknowledged by the Fedora community, emphasizing the importance of maintaining updated systems. The updates can be installed using the dnf package manager, with specific advisories provided for each CVE.

Key Points: • CVE-2026-10846 affects the ldns library, crucial for DNS operations. • CVE-2026-44898 in python-mistune allows arbitrary code execution via HTML injection. • Fedora users are urged to update their systems to prevent exploitation.