Fedora 42: containerd Critical Cross-Origin Bypass Issues 2025-daa6238745

fedora

November 15, 2025

Update to v2.0.7

Summary

Containerd is an industry-standard container runtime with an emphasis on

simplicity, robustness and portability. It is available as a daemon for Linux

and Windows, which can manage the complete container lifecycle of its host

system: image transfer and storage, container execution and supervision,

low-level storage and network attachments, etc.

Update Information:

Update to v2.0.7

Topics Covered

security advisory fedora memory exhaustion cpu consumption cross-origin containerd

Change Log

* Thu Nov 6 2025 Bradley G Smith - 2.0.7-1 - Update to v2.0.7 - Resolves: GHSA-pwhc-rpq9-4c8w (CVE-2024-25621) - Resolves: GHSA-m6hq-p25p-ffr2 - Resolves: rhbz#2412750 rhbz#2411188 rhbz#2410276 rhbz#2409324 - Resolves: rhbz#2408632 rhbz#2407857 rhbz#2399331 rhbz#2398655 - Upstream fixes

References

[ 1 ] Bug #2398655 - CVE-2025-47910 containerd: CrossOriginProtection bypass in net/http [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2398655 [ 2 ] Bug #2399331 - CVE-2025-47906 containerd: Unexpected paths returned from LookPath in os/exec [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2399331 [ 3 ] Bug #2407857 - CVE-2025-58189 containerd: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2407857 [ 4 ] Bug #2408632 - CVE-2025-61725 containerd: Excessive CPU consumption in ParseAddress in net/mail [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2408632 [ 5 ] Bug #2409324 - CVE-2025-61723 containerd: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2409324 [ 6 ] Bug #2410276 - CVE-2025-58185 containerd: Parsing DER payload can cause mem...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-daa6238745' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: containerd

Product: Fedora 42

Version: 2.0.7

Release: 1.fc42

URL: https://github.com/containerd/containerd

Summary: An open and reliable container runtime

Topics Covered

security advisory fedora memory exhaustion cpu consumption cross-origin containerd

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 42: containerd Critical Cross-Origin Bypass Issues 2025-daa6238745

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 42: containerd Critical Cross-Origin Bypass Issues 2025-daa6238745

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!