Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Fedora 43 Skopeo Critical DoS Security Fix FEDORA-2026-75c2b7868a

fedora
Calendar Grey April 17, 2026
Dist Fedora Esm H88
Automatic update for skopeo in Fedora with security fix for a Denial of Service issue in version 1.22.2.
Automatic update for skopeo-1.22.2-1.fc43, podman-5.8.2-1.fc43, buildah-1.43.1-1.fc43

Summary

Command line utility to inspect images and repositories directly on Docker

registries without the need to pull them.

Update Information:

Automatic update for skopeo-1.22.2-1.fc43, podman-5.8.2-1.fc43, buildah-1.43.1-1.fc43. Changelog for skopeo * Tue Apr 14 2026 Packit - 1:1.22.2-1 - Update to 1.22.2 upstream release * Fri Apr 10 2026 Lokesh Mandvekar - 1:1.22.1-2 - TMT: fix ref in plan * Thu Apr 09 2026 Packit - 1:1.22.1-1 - Update to 1.22.1 upstream release Changelog for podman * Tue Apr 14 2026 Packit - 5:5.8.2-1 - Update to 5.8.2 upstream release Changelog for buildah * Wed Apr 08 2026 Packit - 2:1.43.1-1 - Update to 1.43.1 upstream release Security fix for CVE-2026-34986

Change Log

* Tue Apr 14 2026 Packit - 1:1.22.2-1 - Update to 1.22.2 upstream release * Fri Apr 10 2026 Lokesh Mandvekar - 1:1.22.1-2 - TMT: fix ref in plan * Thu Apr 9 2026 Packit - 1:1.22.1-1 - Update to 1.22.1 upstream release

References


[ 1 ] Bug #2455675 - CVE-2026-34986 skopeo: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2455675

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-75c2b7868a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: skopeo
Product: Fedora 43
Version: 1.22.2
Release: 1.fc43
Summary: Inspect container images and repositories on registries

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here