Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 41: FEDORA-2025-e375586840 critical: fido-device-onboard DoS

fedora
Calendar Grey June 17, 2025
Dist Fedora Esm H88
The Fido-device-onboard update in Fedora 41 addresses the CVE-2024-12224 vulnerability and features a rebuilt idna package for improved security
Rebuild against idna 1.0+ for CVE-2024-12224

Summary

A rust implementation of the FIDO Device Onboard Specification.

Update Information:

Rebuild against idna 1.0+ for CVE-2024-12224

Topics%20covered

Topics Covered

security advisory fedora critical DoS rebuild cve-2024-12224

Change Log

* Sun Jun 8 2025 Peter Robinson - 0.5.1-3 - Rebuild against idna 1.0+ for CVE-2024-12224

References


[ 1 ] Bug #2370564 - CVE-2024-12224 fido-device-onboard: idna accepts Punycode labels that do not produce any non-ASCII when decoded [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2370564

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e375586840' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: fido-device-onboard
Product: Fedora 41
Version: 0.5.1
Release: 3.fc41
URL: https://github.com/fdo-rs/fido-device-onboard-rs
Summary: A rust implementation of the FIDO Device Onboard Specification

Topics%20covered

Topics Covered

security advisory fedora critical DoS rebuild cve-2024-12224

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here