BZ#2398304 CVE-2025-47910 node-exporter: CrossOriginProtection bypass in net/http [epel-10]
0
0
BZ#2398367 CVE-2025-47910 node-exporter: CrossOriginProtection bypass in net/http [epel-9]
0
0
BZ#2398940 CVE-2025-47906 node-exporter: Unexpected paths returned from LookPath in os/exec [epel-10]
0
0
BZ#2407489 CVE-2025-58189 node-exporter: go crypto/tls ALPN negotiation error contains attacker controlled information [epel-10]
0
0
BZ#2408941 CVE-2025-61723 node-exporter: Quadratic complexity when parsing some invalid inputs in encoding/pem [epel-10]
0
0
BZ#2409883 CVE-2025-58185 node-exporter: Parsing DER payload can cause memory exhaustion in encoding/asn1 [epel-10]
0
0
BZ#2410823 CVE-2025-58188 node-exporter: Panic when validating certificates with DSA public keys in crypto/x509 [epel-10]
0
0
BZ#2423985 [Minor Incident] CVE-2025-52881 node-exporter: container escape and denial of service due to arbitrary write gadgets and procfs write redirects [epel-10]
This update has been submitted for testing by mikelo2.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
This update has been submitted for stable by bodhi.
This update has been pushed to stable.