Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 43: nextcloud 32.0.3 Advisory for XSS Fixes 2025-86c0829159

fedora
Calendar Grey December 21, 2025
Dist Fedora Esm H88
Nextcloud 32.0.3 for Fedora 43 addresses critical XSS issues. Update recommended for improved security.
32.0.3 release, fixes RHBZ# 2420196 RHBZ# 2420197 RHBZ# 2420198 RHBZ# 2421368

Summary

NextCloud gives you universal access to your files through a web interface or

WebDAV. It also provides a platform to easily view & sync your contacts,

calendars and bookmarks across all your devices and enables basic editing right

on the web. NextCloud is extendable via a simple but powerful API for

applications and plugins.

Update Information:

32.0.3 release, fixes RHBZ# 2420196 RHBZ# 2420197 RHBZ# 2420198 RHBZ# 2421368

Topics%20covered

Topics Covered

security advisory fedora update XSS bug fix nextcloud

Change Log

* Fri Dec 12 2025 Andrew Bauer - 32.0.3-1 - 32.0.3 release, fixes RHBZ# 2420196 RHBZ# 2420197 RHBZ# 2420198 RHBZ# 2421368

References


[ 1 ] Bug #2420196 - CVE-2025-66512 nextcloud: Nextcloud Server XSS in SVG images when opened outside of Nextcloud [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2420196 [ 2 ] Bug #2420197 - CVE-2025-66512 nextcloud: Nextcloud Server XSS in SVG images when opened outside of Nextcloud [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2420197 [ 3 ] Bug #2420198 - CVE-2025-66512 nextcloud: Nextcloud Server XSS in SVG images when opened outside of Nextcloud [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2420198 [ 4 ] Bug #2421368 - nextcloud-32.0.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2421368

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-86c0829159' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: nextcloud
Product: Fedora 43
Version: 32.0.3
Release: 1.fc43
URL: http://nextcloud.com
Summary: Private file sync and share server

Topics%20covered

Topics Covered

security advisory fedora update XSS bug fix nextcloud

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here