Fedora Caddy Security Updates Address Multiple CVEs
ID: 587af76e-aa3e-5db4-b283-03aaa3e262e8
STIX ID: report--587af76e-aa3e-5db4-b283-03aaa3e262e8
Feed Name: ThreatCluster
Threat Score
Fedora released critical security updates for the Caddy web server on June 23, 2026, addressing 22 CVEs in Fedora 43 and 17 CVEs in Fedora 44. The vulnerabilities include privilege escalation, information disclosure, and denial-of-service issues (notable CVEs: CVE-2026-27585, CVE-2026-30851, CVE-2026-40097); fixes were backported from upstream and users are advised to apply updates using dnf to mitigate significant security risks.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
