Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora 42: Advisory for golang-github-alecthomas-chroma-2 CVE-2025-58185

fedora
Calendar Grey December 30, 2025
Dist Fedora Esm H88
Fedora 42 update for golang-github-alecthomas-chroma-2 addresses CVE-2025-58185 to prevent memory issues.
Rebuilt for CVE-2025-58185

Summary

A general purpose syntax highlighter in pure Go.

Update Information:

Rebuilt for CVE-2025-58185

Change Log

* Sun Dec 21 2025 W. Michael Petullo - 2.14.0-4 - Rebuilt for CVE-2025-58185

References


[ 1 ] Bug #2410326 - CVE-2025-58185 golang-github-alecthomas-chroma-2: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2410326

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-570618af7e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: golang-github-alecthomas-chroma-2
Product: Fedora 42
Version: 2.14.0
Release: 4.fc42
Summary: A general purpose syntax highlighter in pure Go

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here