Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 547
Alerts This Week
Warning Icon 1 547

Fedora 43 nmap Important Denial of Service Fix CVE-2026-58058

fedora
Calendar Grey July 9, 2026
Dist Fedora Esm H88
Fix for CVE-2026-58058 in Fedora 43 nmap addresses denial of service flaw via crafted IPv6 response.
Fix CVE-2026-58058 (rhbz#2494410)

Summary

Nmap is a utility for network exploration or security auditing. It supports

ping scanning (determine which hosts are up), many port scanning techniques

(determine what services the hosts are offering), and TCP/IP fingerprinting

(remote host operating system identification). Nmap also offers flexible target

and port specification, decoy scanning, determination of TCP sequence

predictability characteristics, reverse-identd scanning, and more. In addition

to the classic command-line nmap executable, the Nmap suite includes a flexible

data transfer, redirection, and debugging tool (netcat utility ncat), a utility

for comparing scan results (ndiff), and a packet generation and response

analysis tool (nping).

Update Information:

Fix CVE-2026-58058 (rhbz#2494410)

Change Log

* Wed Jul 1 2026 Martin Osvald - 4:7.92-8 - Fix CVE-2026-58058 (rhbz#2494410) * Wed Aug 13 2025 František Hrdina - 4:7.92-7 - Update of fmf plans

References


[ 1 ] Bug #2494410 - CVE-2026-58058 nmap: Nmap: Denial of Service via crafted IPv6 response [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494410

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-602d919dbc' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: nmap
Product: Fedora 43
Version: 7.92
Release: 8.fc43
Summary: Network exploration tool and security scanner

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.