Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Debian 12: Docker Essential Out-Of-Memory Flaw 2025-eef92bdc6b1

fedora
Calendar Grey November 7, 2025
Dist Fedora Esm H88
Critical update for apptainer on Fedora 42 to address multiple high-risk vulnerabilities to enhance system security.
Update to upstream 1.4.4

Summary

Apptainer provides functionality to make portable

containers that can be used across host environments.

Update Information:

Update to upstream 1.4.4. This was built with golang-1.24.9 so it addresses CVE-2025-61723, CVE-2025-61725, CVE-2025-58183, CVE-2025-58185, CVE-2025-58188, and CVE-2025-58189.

Topics%20covered

Topics Covered

security advisory fedora critical DoS memory exhaustion apptainer

Change Log

* Wed Oct 29 2025 Dave Dykstra - 1.4.4-1 - Update to upstream 1.4.4

References


[ 1 ] Bug #2407844 - CVE-2025-58189 apptainer: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2407844 [ 2 ] Bug #2408628 - CVE-2025-61725 apptainer: Excessive CPU consumption in ParseAddress in net/mail [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2408628 [ 3 ] Bug #2409311 - CVE-2025-61723 apptainer: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2409311 [ 4 ] Bug #2410263 - CVE-2025-58185 apptainer: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2410263 [ 5 ] Bug #2411175 - CVE-2025-58188 apptainer: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2411175 [ 6 ] Bug #2412744 - CVE-2025-58183 apptai...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-ee38edca98' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: apptainer
Product: Fedora 42
Version: 1.4.4
Release: 1.fc42
URL: https://apptainer.org
Summary: Application and environment virtualization formerly known as Singularity

Topics%20covered

Topics Covered

security advisory fedora critical DoS memory exhaustion apptainer

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here