Fedora 43 vhs Critical Memory Exhaustion Flaws FEDORA-2026-7646f2a691

fedora

May 1, 2026

Rebuild with golang 1.25.9 to pick up multiple security fixes.

Summary

Write terminal GIFs as code for integration testing and demoing your CLI tools.

Update Information:

Rebuild with golang 1.25.9 to pick up multiple security fixes.

Topics Covered

security advisory fedora critical security fix memory exhaustion vhs

Change Log

* Wed Apr 22 2026 Carl George - 0.10.0-4 - Rebuild with golang 1.25.9

References

[ 1 ] Bug #2398899 - CVE-2025-47910 vhs: CrossOriginProtection bypass in net/http [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2398899 [ 2 ] Bug #2408367 - CVE-2025-58189 vhs: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408367 [ 3 ] Bug #2409838 - CVE-2025-61723 vhs: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409838 [ 4 ] Bug #2410788 - CVE-2025-58185 vhs: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410788 [ 5 ] Bug #2411684 - CVE-2025-58188 vhs: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411684 [ 6 ] Bug #2412612 - CVE-2025-58183 vhs: Unbounded allocation when parsing GNU sparse...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-7646f2a691' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: vhs

Product: Fedora 43

Version: 0.10.0

Release: 4.fc43

URL: https://github.com/charmbracelet/vhs

Summary: Your CLI home video recorder

Topics Covered

security advisory fedora critical security fix memory exhaustion vhs

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 vhs Critical Memory Exhaustion Flaws FEDORA-2026-7646f2a691

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 vhs Critical Memory Exhaustion Flaws FEDORA-2026-7646f2a691

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!