FEDORA-2025-a9a4d57353 — security update for kubernetes1.31

stable

kubernetes1.31-1.31.14-1.fc44

FEDORA-2025-a9a4d57353 created by buckaroogeek 3 months ago for Fedora 44

Automatic update for kubernetes1.31-1.31.14-1.fc44.

Changelog

* Wed Nov 12 2025 Bradley G Smith <bradley.g.smith@gmail.com> - 1.31.14-1
- Update to release v1.31.14
- Resolves: rhbz#2398586, rhbz#2398847, rhbz#2399248, rhbz#2399521
- Resolves: rhbz#2399702, rhbz#2399720, rhbz#2407787, rhbz#2408057
- Resolves: rhbz#2408314, rhbz#2408608, rhbz#2408671, rhbz#2408729
- Resolves: rhbz#2409236, rhbz#2409526, rhbz#2409787, rhbz#2410201
- Resolves: rhbz#2410476, rhbz#2410737, rhbz#2411116, rhbz#2411375
- Resolves: rhbz#2411633, rhbz#2412568, rhbz#2412587, rhbz#2412802
- Upstream fixes.
- Likely last release of Kubernetes 1.31

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-a9a4d57353

This update was automatically created

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update has been submitted for stable by bodhi

3 months ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

0 days

Dates

submitted

3 months ago

in testing

3 months ago

in stable

3 months ago

approved

3 months ago

Builds

kubernetes1.31-1.31.14-1.fc44

BZ#2398586 CVE-2025-47910 kubernetes1.31: CrossOriginProtection bypass in net/http [fedora-41]

BZ#2398847 CVE-2025-47910 kubernetes1.31: CrossOriginProtection bypass in net/http [fedora-42]

BZ#2399248 CVE-2025-47906 kubernetes1.31: Unexpected paths returned from LookPath in os/exec [fedora-41]

BZ#2399521 CVE-2025-47906 kubernetes1.31: Unexpected paths returned from LookPath in os/exec [fedora-42]

BZ#2399702 CVE-2025-11065 kubernetes1.31: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [fedora-41]

BZ#2399720 CVE-2025-11065 kubernetes1.31: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [fedora-42]

BZ#2407787 CVE-2025-58189 kubernetes1.31: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41]

BZ#2408057 CVE-2025-58189 kubernetes1.31: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]

BZ#2408314 CVE-2025-58189 kubernetes1.31: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43]

BZ#2408608 CVE-2025-61725 kubernetes1.31: Excessive CPU consumption in ParseAddress in net/mail [fedora-41]

BZ#2408671 CVE-2025-61725 kubernetes1.31: Excessive CPU consumption in ParseAddress in net/mail [fedora-42]

BZ#2408729 CVE-2025-61725 kubernetes1.31: Excessive CPU consumption in ParseAddress in net/mail [fedora-43]

BZ#2409236 CVE-2025-61723 kubernetes1.31: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-41]

BZ#2409526 CVE-2025-61723 kubernetes1.31: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42]

BZ#2409787 CVE-2025-61723 kubernetes1.31: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43]

BZ#2410201 CVE-2025-58185 kubernetes1.31: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-41]

BZ#2410476 CVE-2025-58185 kubernetes1.31: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42]

BZ#2410737 CVE-2025-58185 kubernetes1.31: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43]

BZ#2411116 CVE-2025-58188 kubernetes1.31: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-41]

BZ#2411375 CVE-2025-58188 kubernetes1.31: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-42]

BZ#2411633 CVE-2025-58188 kubernetes1.31: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43]

BZ#2412568 CVE-2025-58183 kubernetes1.31: Unbounded allocation when parsing GNU sparse map [fedora-41]

BZ#2412587 CVE-2025-58183 kubernetes1.31: Unbounded allocation when parsing GNU sparse map [fedora-43]

BZ#2412802 CVE-2025-58183 kubernetes1.31: Unbounded allocation when parsing GNU sparse map [fedora-42]

kubernetes1.31-1.31.14-1.fc44

Automated Test Results

ignored