stable

mirrorlist-server-3.0.8-1.fc41, rust-maxminddb-0.26.0-1.fc41, & 6 more

FEDORA-2025-2503abb88f created by decathorpe a month ago for Fedora 41
  • Update mirrorlist-server to version 3.0.8.
  • Update the maxminddb crate to version 0.26.0.
  • Update the prometheus crate to version 0.14.0.
  • Update the protobuf and protobuf-codegen crates to version 3.7.2.
  • Initial packaging of the protobuf-parse and protobuf-support crates.

This includes fixes for CVE-2025-53605 (Uncontrolled Recursion Vulnerability in the protobuf crate).

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-2503abb88f

This update's test gating status has been changed to 'waiting'.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update has been submitted for testing by bodhi.

a month ago

decathorpe edited this update.

New build(s):

  • rust-prometheus_exporter-0.8.5-5.fc41
  • rust-prometheus-0.14.0-1.fc41

Karma has been reset.

a month ago

This update has been pushed to testing.

a month ago

This update has been submitted for stable by bodhi.

a month ago

This update has been pushed to stable.

a month ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
a month ago
in testing
a month ago
in stable
a month ago
modified
a month ago
approved
a month ago
Builds
8
mirrorlist-server-3.0.8-1.fc41
rust-maxminddb-0.26.0-1.fc41
rust-prometheus-0.14.0-1.fc41
rust-prometheus_exporter-0.8.5-5.fc41
rust-protobuf-3.7.2-1.fc41
rust-protobuf-codegen-3.7.2-1.fc41
rust-protobuf-parse-3.7.2-1.fc41
rust-protobuf-support-3.7.2-1.fc41
BZ#2376749 CVE-2025-53605 mirrorlist-server: Protobuf: Uncontrolled Recursion Vulnerability [fedora-41]
0
0
mirrorlist-server-3.0.8-1.fc41
rust-maxminddb-0.26.0-1.fc41
rust-prometheus-0.14.0-1.fc41
rust-prometheus_exporter-0.8.5-5.fc41
rust-protobuf-3.7.2-1.fc41
rust-protobuf-codegen-3.7.2-1.fc41
rust-protobuf-parse-3.7.2-1.fc41
rust-protobuf-support-3.7.2-1.fc41

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-10-hzhhp.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy