logo

Fedora Caddy Security Updates Address Multiple CVEs

ID: 587af76e-aa3e-5db4-b283-03aaa3e262e8

STIX ID: report--587af76e-aa3e-5db4-b283-03aaa3e262e8

Feed Name: ThreatCluster

Threat Score
65/100

Date Published: 2026-07-02

Date Updated: 2026-07-02

...
...

Fedora released critical security updates for the Caddy web server on June 23, 2026, addressing 22 CVEs in Fedora 43 and 17 CVEs in Fedora 44. The vulnerabilities include privilege escalation, information disclosure, and denial-of-service issues (notable CVEs: CVE-2026-27585, CVE-2026-30851, CVE-2026-40097); fixes were backported from upstream and users are advised to apply updates using dnf to mitigate significant security risks.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.