Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 43: subfinder Critical Memory Exhaustion Risk 2025-6b23a0b058

fedora
Calendar Grey December 26, 2025
Dist Fedora Esm H88
The latest update for subfinder 2.10.1 addresses important security vulnerabilities in Fedora 43, ensuring enhanced protection for users.
Update to 2.10.1

Summary

Subfinder is a subdomain discovery tool that discovers valid subdomains for

websites. Designed as a passive framework to be useful for bug bounties and

safe for penetration testing.

Update Information:

Update to 2.10.1

Topics%20covered

Topics Covered

security advisory fedora critical DoS memory exhaustion subfinder

Change Log

* Wed Dec 17 2025 Mikel Olasagasti Uranga - 2.10.1-1 - Update to 2.10.1 - Closes rhbz#2415791

References


[ 1 ] Bug #2408353 - CVE-2025-58189 subfinder: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408353 [ 2 ] Bug #2409825 - CVE-2025-61723 subfinder: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409825 [ 3 ] Bug #2410775 - CVE-2025-58185 subfinder: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410775 [ 4 ] Bug #2411671 - CVE-2025-58188 subfinder: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411671 [ 5 ] Bug #2412605 - CVE-2025-58183 subfinder: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412605

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6b23a0b058' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: subfinder
Product: Fedora 43
Version: 2.10.1
Release: 1.fc43
URL: https://github.com/projectdiscovery/subfinder
Summary: Fast passive subdomain enumeration tool

Topics%20covered

Topics Covered

security advisory fedora critical DoS memory exhaustion subfinder

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here