Fedora 41: python-watchfiles 2025-e5d435516f critical: double free issue
fedora
May 23, 2025
Security fix for CVE-2025-4574 (fix RHBZ#2366569) The package was rebuilt with rust-crossbeam-channel 0.5.15.
Summary
Simple, modern and high performance file watching and code reload in python.
Underlying file system notifications are handled by the Notify rust library.
Update Information:
Security fix for CVE-2025-4574 (fix RHBZ#2366569) The package was rebuilt with rust-crossbeam-channel 0.5.15.
Topics Covered
Change Log
* Thu May 15 2025 Benjamin A. Beasley
References
[ 1 ] Bug #2366569 - CVE-2025-4574 python-watchfiles: crossbeam-channel Vulnerable to Double Free on Drop [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2366569
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e5d435516f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: python-watchfiles
Product: Fedora 41
Version: 1.0.3
Release: 4.fc41
Summary: Simple, modern and high performance file watching and code reload in python
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!