FEDORA-2025-80ed98504b — security update for containerd

stable

containerd-1.7.29-1.fc41

FEDORA-2025-80ed98504b created by buckaroogeek 4 months ago for Fedora 41

Update to v1.7.29

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-80ed98504b

This update has been submitted for testing by buckaroogeek.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

4 months ago

in testing

4 months ago

in stable

4 months ago

approved

4 months ago

Builds

containerd-1.7.29-1.fc41

BZ#2352144 CVE-2025-22870 containerd: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [fedora-41]

BZ#2398401 CVE-2025-47910 containerd: CrossOriginProtection bypass in net/http [fedora-41]

BZ#2407587 CVE-2025-58189 containerd: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41]

BZ#2408565 CVE-2025-61725 containerd: Excessive CPU consumption in ParseAddress in net/mail [fedora-41]

BZ#2409042 CVE-2025-61723 containerd: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-41]

BZ#2409990 CVE-2025-58185 containerd: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-41]

BZ#2410922 CVE-2025-58188 containerd: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-41]

BZ#2412519 CVE-2025-58183 containerd: Unbounded allocation when parsing GNU sparse map [fedora-41]

containerd-1.7.29-1.fc41

Automated Test Results

ignored