Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 43: gopass 1.16.0 Critical Security Patch 2025-abc123ef456

fedora
Calendar Grey November 22, 2025
Dist Fedora Esm H88
Update to gopass 1.16.0 on Fedora 43 addresses important security issues including memory exhaustion.
Update to 1.16.0

Summary

The slightly more awesome standard unix password manager for teams.

Update Information:

Update to 1.16.0

Topics%20covered

Topics Covered

security advisory fedora important memory exhaustion certificate validation gopass

Change Log

* Thu Nov 13 2025 Fabio Alessandro Locati - 1.16.0-1 - Update to 1.16.0 * Fri Oct 10 2025 Alejandro Sez - 1.15.18-2 - rebuild

References


[ 1 ] Bug #2385032 - gopass: FTBFS in Fedora rawhide/f43 https://bugzilla.redhat.com/show_bug.cgi?id=2385032 [ 2 ] Bug #2407760 - CVE-2025-58189 gopass: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2407760 [ 3 ] Bug #2408029 - CVE-2025-58189 gopass: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2408029 [ 4 ] Bug #2408287 - CVE-2025-58189 gopass: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408287 [ 5 ] Bug #2409210 - CVE-2025-61723 gopass: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2409210 [ 6 ] Bug #2409497 - CVE-2025-61723 gopass: Quadratic complexity when parsing some invalid inputs in...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-817b0dc707' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: gopass
Product: Fedora 43
Version: 1.16.0
Release: 1.fc43
URL: https://github.com/gopasspw/gopass
Summary: The slightly more awesome standard unix password manager for teams

Topics%20covered

Topics Covered

security advisory fedora important memory exhaustion certificate validation gopass

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here