Fedora 42: Advisory for golang-github-alecthomas-chroma-2 CVE-2025-58185
fedora
December 30, 2025
Rebuilt for CVE-2025-58185
Summary
A general purpose syntax highlighter in pure Go.
Update Information:
Rebuilt for CVE-2025-58185
Change Log
* Sun Dec 21 2025 W. Michael Petullo
References
[ 1 ] Bug #2410326 - CVE-2025-58185 golang-github-alecthomas-chroma-2: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2410326
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-570618af7e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Name: golang-github-alecthomas-chroma-2
Product: Fedora 42
Version: 2.14.0
Release: 4.fc42
Summary: A general purpose syntax highlighter in pure Go
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!