jfk5d ago
geeknik

Your package manager's D-Bus interface is root-privileged, always-on, and crashes instantly if you whisper the wrong locale at it.

CVE-2026-3836.
CVSS 7.5.
No auth required.

The tool patching your system was the hole. Upgrade dnf5 now.
https://portallinuxferramentas.blogspot.com/2026/03/critical-fedora-42-update-analyzing-cve.html?m=1

Critical Fedora 42 Update: Analyzing CVE-2026-3836 and the dnf5 D-Bus Vulnerability Patch

Blog com notícias sobre, Linux, Android, Segurança , etc

Mar 14 at 9:20pmWeb