FEDORA-EPEL-2025-a51b0db53c — security update for singularity-ce

stable

singularity-ce-4.3.5-1.el9

FEDORA-EPEL-2025-a51b0db53c created by dctrud a week ago for Fedora EPEL 9

Upgrade to 4.3.5 upstream version with fix for CVE-2025-64750 / GHSA-wwrx-w7c9-rf87

Build with Go 1.25.3 closes various Go / stdlib CVEs.

This update has been submitted for testing by dctrud.

a week ago

This update's test gating status has been changed to 'ignored'.

a week ago

This update has been pushed to testing.

a week ago

dctrud edited this update.

a week ago

This update has been submitted for stable by bodhi.

2 days ago

This update has been pushed to stable.

a day ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

a week ago

in testing

a week ago

in stable

a day ago

modified

a week ago

approved

2 days ago

Builds

singularity-ce-4.3.5-1.el9

BZ#2407562 CVE-2025-58189 singularity-ce: go crypto/tls ALPN negotiation error contains attacker controlled information [epel-9]

BZ#2408558 CVE-2025-61725 singularity-ce: Excessive CPU consumption in ParseAddress in net/mail [epel-9]

BZ#2409016 CVE-2025-61723 singularity-ce: Quadratic complexity when parsing some invalid inputs in encoding/pem [epel-9]

BZ#2409963 CVE-2025-58185 singularity-ce: Parsing DER payload can cause memory exhaustion in encoding/asn1 [epel-9]

BZ#2410896 CVE-2025-58188 singularity-ce: Panic when validating certificates with DSA public keys in crypto/x509 [epel-9]

BZ#2412496 CVE-2025-58183 singularity-ce: Unbounded allocation when parsing GNU sparse map [epel-all]

singularity-ce-4.3.5-1.el9

Automated Test Results

ignored