Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 43: Foomuuri D-Bus Fixes & System Hardening Advisories

fedora
Calendar Grey January 9, 2026
Dist Fedora Esm H88
Foomuuri multizone firewall for Fedora 43 receives critical updates addressing security vulnerabilities for improved stability.
Upstream update to v0.31 with fixes to CVE-2025-67603 and CVE-2025-67858

Summary

Foomuuri is a firewall generator for nftables based on the concept of zones.

It is suitable for all systems from personal machines to corporate firewalls,

and supports advanced features such as a rich rule language, IPv4/IPv6 rule

splitting, dynamic DNS lookups, a D-Bus API and FirewallD emulation for

NetworkManager's zone support.

Update Information:

Upstream update to v0.31 with fixes to CVE-2025-67603 and CVE-2025-67858. CVE-2025-67603: Add PolicyKit authorization to D-Bus methods. CVE-2025-67858: Verify interface input parameter on D-Bus methods. Security hardening: Add ProtectSystem=full to all systemd service files. This changes /etc to read-only for all Foomuuri processes. Make sure you don't write any state files there in your startup hook or Foomuuri Monitor event hook. Change umask to 022 when using --fork to fork as a background daemon process. More strict IP address verify for iplist entries.

Topics%20covered

Topics Covered

security advisory fedora system hardening CVE fix firewall software d-bus authorization

Change Log

* Wed Jan 7 2026 Kim B. Heino - 0.31-1 - Upgrade to 0.31 - CVE-2025-67603: Add PolicyKit authorization to D-Bus methods - CVE-2025-67858: Verify interface input parameter on D-Bus methods

References

Fedora Update Notification FEDORA-2026-429edf2dcf 2026-01-09 17:20:33.079067+00:00 Name : foomuuri Product : Fedora 43 Version : 0.31 Release : 1.fc43 URL : https://github.com/FoobarOy/foomuuri Summary : Multizone bidirectional nftables firewall Description : Foomuuri is a firewall generator for nftables based on the concept of zones. It is suitable for all systems from personal machines to corporate firewalls, and supports advanced features such as a rich rule language, IPv4/IPv6 rule splitting, dynamic DNS lookups, a D-Bus API and FirewallD emulation for NetworkManager's zone support.

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-429edf2dcf' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: foomuuri
Product: Fedora 43
Version: 0.31
Release: 1.fc43
URL: https://github.com/FoobarOy/foomuuri
Summary: Multizone bidirectional nftables firewall

Topics%20covered

Topics Covered

security advisory fedora system hardening CVE fix firewall software d-bus authorization

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here