Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 41: FEDORA-2025-b0915f0a19 critical: prometheus-podman-exporter DoS

fedora
Calendar Grey April 21, 2025
Dist Fedora Esm H88
The Fedora 41 security advisory warns of critical DoS vulnerabilities in prometheus-podman-exporter 1.16.0, urging admins to patch promptly to safeguard services
release v1.16.0

Summary

Prometheus exporter for podman environments exposing containers, pods, images,

volumes and networks information.

Update Information:

release v1.16.0

Topics%20covered

Topics Covered

security advisory update Fedora DoS podman prometheus

Change Log

* Fri Apr 11 2025 Navid Yaghoobi - 1.16.0-1 - release v1.16.0

References


[ 1 ] Bug #2347472 - CVE-2025-27144 prometheus-podman-exporter: Go JOSE's Parsing Vulnerable to Denial of Service [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2347472 [ 2 ] Bug #2347484 - CVE-2025-27144 prometheus-podman-exporter: Go JOSE's Parsing Vulnerable to Denial of Service [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2347484 [ 3 ] Bug #2350800 - CVE-2025-22869 prometheus-podman-exporter: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2350800 [ 4 ] Bug #2350843 - CVE-2025-22869 prometheus-podman-exporter: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2350843 [ 5 ] Bug #2352105 - CVE-2025-22870 prometheus-podman-exporter: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2352105 [ 6 ] B...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-b0915f0a19' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: prometheus-podman-exporter
Product: Fedora 41
Version: 1.16.0
Release: 1.fc41
URL: https://github.com/containers/prometheus-podman-exporter
Summary: Prometheus exporter for podman environment

Topics%20covered

Topics Covered

security advisory update Fedora DoS podman prometheus

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here