Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 529
Alerts This Week
Warning Icon 1 529

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
89

Fedora 41: python-kdcproxy DoS TCP Buffer Overflow CVE-2025-59089

New upstream version (1.1.0) Use DNS discovery for declared realms only (CVE-2025-59088) Fix DoS vulnerability based on unbounded TCP buffering (CVE-2025-59089). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-3075610004 2025-12-05 02:22:16.764219+00:00 -------------------------------------------------------------------------------- Name : python-kdcproxy Product : Fedora 41 Version : 1.1.0 Release : 1.fc41 URL : https://github.com/latchset/kdcproxy Summary : MS-KKDCP (kerberos proxy) WSGI module Description : This package contains a Python WSGI module for proxying KDC requests over HTTP by following the MS-KKDCP protocol. It aims to be simple to deploy, with minimal configuration. -------------------------------------------------------------------------------- Update Information: New upstream version (1.1.0) Use DNS discovery for declared realms only (CVE-2025-59088) Fix DoS vulnerability based on unbounded TCP buffering (CVE-2025-59089) -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 19 2025 Julien Rische - 1.1.0-1 - New upstream version (1.1.0) - Use DNS discovery for declared realms only (CVE-2025-59088) Resolves: rhbz#2414550 - Fix DoS vulnerability based on unbounded TCP buffering (CVE-2025-59089) Resolves: rhbz#2414552 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2414550 - CVE-2025-59088 python-kdcproxy: Unauthenticated SSRF via Realm\u2011Controlled DNS SRV [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2414550 [ 2 ] Bug #2414552 - CVE-2025-59089 python-kdcproxy: Remote DoS via unbounded TCP upstream buffering [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2414552 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2025-3075610004' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . New Fedora 41 update for python-kdcproxy addresses DoS and DNS discovery issues. Enhance security now by updating your system.. DoS Attack, Python Proxy Module, Fedora Update, TCP Buffering, Security Patch. . LinuxSecurity.com Team

Calendar%202 Dec 05, 2025 Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200