Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 43: Singularity-CE 4.3.4 Critical Security Advisory 2025-a6641a44f2

fedora
Calendar Grey November 8, 2025
Dist Fedora Esm H88
Upgrade to Singularity-CE 4.3.4 fixes CVEs. Learn about critical updates and their importance for your Fedora system.
Upgrade to 4.3.4 upstream version

Summary

SingularityCE is the Community Edition of Singularity, an open source

container platform designed to be simple, fast, and secure.

Update Information:

Upgrade to 4.3.4 upstream version. Go 1.25.2 for build fixes multiple go CVEs. BZ#2408346 BZ#2408744 BZ#2409819 BZ#2410769 BZ#2411665

Topics%20covered

Topics Covered

security advisory fedora application update application fix CVE environment virtualization

Change Log

* Thu Oct 30 2025 David Trudgian - 4.3.4-1 - Upgrade to 4.3.4 upstream version.

References


[ 1 ] Bug #2408346 - CVE-2025-58189 singularity-ce: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408346 [ 2 ] Bug #2408744 - CVE-2025-61725 singularity-ce: Excessive CPU consumption in ParseAddress in net/mail [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408744 [ 3 ] Bug #2409819 - CVE-2025-61723 singularity-ce: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409819 [ 4 ] Bug #2410769 - CVE-2025-58185 singularity-ce: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410769 [ 5 ] Bug #2411665 - CVE-2025-58188 singularity-ce: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411665

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a6641a44f2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: singularity-ce
Product: Fedora 43
Version: 4.3.4
Release: 1.fc43
URL:
Summary: Application and environment virtualization

Topics%20covered

Topics Covered

security advisory fedora application update application fix CVE environment virtualization

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here