FEDORA-2025-fe1d8025b0 — security update for kubernetes1.33

stable

kubernetes1.33-1.33.6-1.fc44

FEDORA-2025-fe1d8025b0 created by buckaroogeek 4 months ago for Fedora 44

Automatic update for kubernetes1.33-1.33.6-1.fc44.

Changelog

* Thu Nov 13 2025 Bradley G Smith <bradley.g.smith@gmail.com> - 1.33.6-1
- Update to release v1.33.6
- Resolves: rhbz#2398588, rhbz#2398849, rhbz#2399250, rhbz#2399523
- Resolves: rhbz#2407789, rhbz#2408059, rhbz#2408316, rhbz#2408610
- Resolves: rhbz#2408673, rhbz#2408731, rhbz#2409238, rhbz#2409528
- Resolves: rhbz#2409789, rhbz#2410203, rhbz#2410478, rhbz#2410739
- Resolves: rhbz#2411118, rhbz#2411377, rhbz#2412570, rhbz#2412589
- Resolves: rhbz#2412804
- Upstream fixes

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-fe1d8025b0

This update was automatically created

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been submitted for stable by bodhi

4 months ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

0 days

Dates

submitted

4 months ago

in testing

4 months ago

in stable

4 months ago

approved

4 months ago

Builds

kubernetes1.33-1.33.6-1.fc44

BZ#2398588 CVE-2025-47910 kubernetes1.33: CrossOriginProtection bypass in net/http [fedora-41]

BZ#2398849 CVE-2025-47910 kubernetes1.33: CrossOriginProtection bypass in net/http [fedora-42]

BZ#2399250 CVE-2025-47906 kubernetes1.33: Unexpected paths returned from LookPath in os/exec [fedora-41]

BZ#2399523 CVE-2025-47906 kubernetes1.33: Unexpected paths returned from LookPath in os/exec [fedora-42]

BZ#2407789 CVE-2025-58189 kubernetes1.33: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41]

BZ#2408059 CVE-2025-58189 kubernetes1.33: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]

BZ#2408316 CVE-2025-58189 kubernetes1.33: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43]

BZ#2408610 CVE-2025-61725 kubernetes1.33: Excessive CPU consumption in ParseAddress in net/mail [fedora-41]

BZ#2408673 CVE-2025-61725 kubernetes1.33: Excessive CPU consumption in ParseAddress in net/mail [fedora-42]

BZ#2408731 CVE-2025-61725 kubernetes1.33: Excessive CPU consumption in ParseAddress in net/mail [fedora-43]

BZ#2409238 CVE-2025-61723 kubernetes1.33: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-41]

BZ#2409528 CVE-2025-61723 kubernetes1.33: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42]

BZ#2409789 CVE-2025-61723 kubernetes1.33: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43]

BZ#2410203 CVE-2025-58185 kubernetes1.33: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-41]

BZ#2410478 CVE-2025-58185 kubernetes1.33: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42]

BZ#2410739 CVE-2025-58185 kubernetes1.33: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43]

BZ#2411118 CVE-2025-58188 kubernetes1.33: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-41]

BZ#2411377 CVE-2025-58188 kubernetes1.33: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-42]

BZ#2412570 CVE-2025-58183 kubernetes1.33: Unbounded allocation when parsing GNU sparse map [fedora-41]

BZ#2412589 CVE-2025-58183 kubernetes1.33: Unbounded allocation when parsing GNU sparse map [fedora-43]

BZ#2412804 CVE-2025-58183 kubernetes1.33: Unbounded allocation when parsing GNU sparse map [fedora-42]

kubernetes1.33-1.33.6-1.fc44

Automated Test Results

ignored