Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 41: cri-o1.33 Denial of Service Fix 2025-3976569481

fedora
Calendar Grey October 11, 2025
Dist Fedora Esm H88
Fedora 41 updates cri-o1.33 to resolve several issues including DoS threats and upstream fixes. Comprehensive details shared.
Update to release v1.33.5 Resolves: rhbz#2333357, rhbz#2375096, rhbz#2398408, rhbz#2398663, rhbz#2399065, rhbz#2399339 Upstream fixes

Summary

Open Container Initiative-based implementation of Kubernetes Container Runtime

Interface.

Update Information:

Update to release v1.33.5 Resolves: rhbz#2333357, rhbz#2375096, rhbz#2398408, rhbz#2398663, rhbz#2399065, rhbz#2399339 Upstream fixes

Topics%20covered

Topics Covered

security advisory denial of service fedora kubernetes container runtime upstream fixes

Change Log

* Thu Oct 2 2025 Bradley G Smith - 1.33.5-1 - Update to release v1.33.5 - Resolves: rhbz#2333357, rhbz#2375096, rhbz#2398408, rhbz#2398663, rhbz#2399065, rhbz#2399339 - Upstream fixes

References


[ 1 ] Bug #2333357 - cri-o-1.34.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2333357 [ 2 ] Bug #2375096 - CVE-2025-4437 cri-o1.33: Large /etc/passwd file may lead to Denial of Service [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2375096 [ 3 ] Bug #2398408 - CVE-2025-47910 cri-o1.33: CrossOriginProtection bypass in net/http [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2398408 [ 4 ] Bug #2398663 - CVE-2025-47910 cri-o1.33: CrossOriginProtection bypass in net/http [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2398663 [ 5 ] Bug #2399065 - CVE-2025-47906 cri-o1.33: Unexpected paths returned from LookPath in os/exec [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2399065 [ 6 ] Bug #2399339 - CVE-2025-47906 cri-o1.33: Unexpected paths returned from LookPath in os/exec [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2399339

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3976569481' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: cri-o1.33
Product: Fedora 41
Version: 1.33.5
Release: 1.fc41
URL: https://github.com/cri-o/cri-o
Summary: Open Container Initiative-based implementation of Kubernetes Container Runtime Interface

Topics%20covered

Topics Covered

security advisory denial of service fedora kubernetes container runtime upstream fixes

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here