Alerts This Week
Warning Icon 1 745
Alerts This Week
Warning Icon 1 745

Fedora 44 Prometheus Update Denial of Service Issues CVE-2026-42154

fedora
Calendar Grey June 22, 2026
Dist Fedora Esm H88
Discover the latest update for Fedora 44's Prometheus, addressing critical issues like memory leaks and information disclosure.
Update to 3.12.0

Summary

The Prometheus monitoring system and time series database.

Update Information:

Update to 3.12.0

Topics%20covered

Topics Covered

security advisory denial of service fedora update information disclosure Prometheus

Change Log

* Fri Jun 12 2026 Mikel Olasagasti Uranga - 3.12.0-1 - Update to 3.12.0 - Closes rhbz#2482792

References


[ 1 ] Bug #2481306 - CVE-2026-42154 prometheus: Prometheus: Denial of Service via uncontrolled memory allocation in remote read endpoint [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2481306 [ 2 ] Bug #2481308 - CVE-2026-42151 prometheus: Prometheus: Information disclosure of Azure OAuth client secret via config API [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2481308 [ 3 ] Bug #2486235 - CVE-2026-45287 prometheus: OpenTelemetry-Go: Denial of Service due to file descriptor leak [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2486235

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-ebaf2bfd71' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: prometheus
Product: Fedora 44
Version: 3.12.0
Release: 1.fc44
URL: https://github.com/prometheus/prometheus
Summary: Prometheus monitoring system and time series database

Topics%20covered

Topics Covered

security advisory denial of service fedora update information disclosure Prometheus

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here