Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 41: cri-o1.32 Critical CPU Consumption Issues FEDORA-2025-8c88aa0c74

fedora
Calendar Grey November 22, 2025
Dist Fedora Esm H88
Fedora 41 update for cri-o1.32 tackles critical issues including excessive CPU usage and security concerns.
Update to release v1.32.10

Summary

Open Container Initiative-based implementation of Kubernetes Container Runtime

Interface.

Update Information:

Update to release v1.32.10

Topics%20covered

Topics Covered

security advisory fedora critical cpu consumption kubernetes container runtime

Change Log

* Tue Nov 11 2025 Bradley G Smith - 1.32.10-1 - Update to release v1.32.10 - Resolves: rhbz#2407593, rhbz#2407864, rhbz#2408140, rhbz#2408571 - Resolves: rhbz#2408638, rhbz#2408701, rhbz#2409048, rhbz#2409331 - Resolves: rhbz#2409610, rhbz#2409996, rhbz#2410283, rhbz#2410561 - Resolves: rhbz#2410928, rhbz#2411196, rhbz#2411459, rhbz#2412524 - Resolves: rhbz#2412676, rhbz#2412756 * Fri Oct 10 2025 Alejandro Sez - 1.32.9-2 - rebuild

References


[ 1 ] Bug #2407593 - CVE-2025-58189 cri-o1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2407593 [ 2 ] Bug #2407864 - CVE-2025-58189 cri-o1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2407864 [ 3 ] Bug #2408140 - CVE-2025-58189 cri-o1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408140 [ 4 ] Bug #2408571 - CVE-2025-61725 cri-o1.32: Excessive CPU consumption in ParseAddress in net/mail [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2408571 [ 5 ] Bug #2408638 - CVE-2025-61725 cri-o1.32: Excessive CPU consumption in ParseAddress in net/mail [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2408638 [ 6 ] Bug #2408701 - CVE-2025-61725 cri-o1.32: E...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-8c88aa0c74' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cri-o1.32
Product: Fedora 41
Version: 1.32.10
Release: 1.fc41
URL: https://github.com/cri-o/cri-o
Summary: Open Container Initiative-based implementation of Kubernetes Container Runtime Interface

Topics%20covered

Topics Covered

security advisory fedora critical cpu consumption kubernetes container runtime

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here