--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-547f14aef4
2025-11-23 01:22:23.613172+00:00
--------------------------------------------------------------------------------

Name        : kubernetes1.32
Product     : Fedora 41
Version     : 1.32.10
Release     : 2.fc41
URL         : https://github.com/kubernetes/kubernetes
Summary     : Open Source Production-Grade Container Scheduling And Management Platform
Description :

Production-Grade Container Scheduling and Management.
Installs kubelet, the kubernetes agent on each machine in a
cluster. The kubernetes-client sub-package,
containing kubectl, is recommended but not strictly required.
The kubernetes-client sub-package should be installed on
control plane machines.

--------------------------------------------------------------------------------
Update Information:

Update to release v1.32.10
Resolves: rhbz#2414539
Resolves: rhbz#2398587, rhbz#2398848, rhbz#2399249, rhbz#2399522
Resolves: rhbz#2399703, rhbz#2399721, rhbz#2407788, rhbz#2408058
Resolves: rhbz#2408315, rhbz#2408609, rhbz#2408672, rhbz#2408730
Resolves: rhbz#2409237, rhbz#2409527, rhbz#2409788, rhbz#2410202
Resolves: rhbz#2410477, rhbz#2410738, rhbz#2411117, rhbz#2411376
Resolves: rhbz#2411634, rhbz#2412569, rhbz#2412588, rhbz#2412803
Upstream fixes
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 12 2025 Bradley G Smith  - 1.32.10-1
- Update to release v1.32.10
- Resolves: rhbz#2414539
- Resolves: rhbz#2398587, rhbz#2398848, rhbz#2399249, rhbz#2399522
- Resolves: rhbz#2399703, rhbz#2399721, rhbz#2407788, rhbz#2408058
- Resolves: rhbz#2408315, rhbz#2408609, rhbz#2408672, rhbz#2408730
- Resolves: rhbz#2409237, rhbz#2409527, rhbz#2409788, rhbz#2410202
- Resolves: rhbz#2410477, rhbz#2410738, rhbz#2411117, rhbz#2411376
- Resolves: rhbz#2411634, rhbz#2412569, rhbz#2412588, rhbz#2412803
- Upstream fixes
* Wed Nov 12 2025 Bradley G Smith  - 1.32.9-2
- Revise template
- Remove transition artifacts - from non-versioned kubernetes
- Remove unneeded network rpms
- Remove duplicate requires
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2398587 - CVE-2025-47910 kubernetes1.32: CrossOriginProtection bypass in net/http [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2398587
  [ 2 ] Bug #2398848 - CVE-2025-47910 kubernetes1.32: CrossOriginProtection bypass in net/http [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2398848
  [ 3 ] Bug #2399249 - CVE-2025-47906 kubernetes1.32: Unexpected paths returned from LookPath in os/exec [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2399249
  [ 4 ] Bug #2399522 - CVE-2025-47906 kubernetes1.32: Unexpected paths returned from LookPath in os/exec [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2399522
  [ 5 ] Bug #2399703 - CVE-2025-11065 kubernetes1.32: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2399703
  [ 6 ] Bug #2399721 - CVE-2025-11065 kubernetes1.32: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2399721
  [ 7 ] Bug #2407788 - CVE-2025-58189 kubernetes1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2407788
  [ 8 ] Bug #2408058 - CVE-2025-58189 kubernetes1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2408058
  [ 9 ] Bug #2408315 - CVE-2025-58189 kubernetes1.32: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2408315
  [ 10 ] Bug #2408609 - CVE-2025-61725 kubernetes1.32: Excessive CPU consumption in ParseAddress in net/mail [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2408609
  [ 11 ] Bug #2408672 - CVE-2025-61725 kubernetes1.32: Excessive CPU consumption in ParseAddress in net/mail [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2408672
  [ 12 ] Bug #2408730 - CVE-2025-61725 kubernetes1.32: Excessive CPU consumption in ParseAddress in net/mail [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2408730
  [ 13 ] Bug #2409237 - CVE-2025-61723 kubernetes1.32: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2409237
  [ 14 ] Bug #2409527 - CVE-2025-61723 kubernetes1.32: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2409527
  [ 15 ] Bug #2409788 - CVE-2025-61723 kubernetes1.32: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2409788
  [ 16 ] Bug #2410202 - CVE-2025-58185 kubernetes1.32: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2410202
  [ 17 ] Bug #2410477 - CVE-2025-58185 kubernetes1.32: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2410477
  [ 18 ] Bug #2410738 - CVE-2025-58185 kubernetes1.32: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2410738
  [ 19 ] Bug #2411117 - CVE-2025-58188 kubernetes1.32: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2411117
  [ 20 ] Bug #2411376 - CVE-2025-58188 kubernetes1.32: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2411376
  [ 21 ] Bug #2411634 - CVE-2025-58188 kubernetes1.32: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2411634
  [ 22 ] Bug #2412569 - CVE-2025-58183 kubernetes1.32: Unbounded allocation when parsing GNU sparse map [fedora-41]
        https://bugzilla.redhat.com/show_bug.cgi?id=2412569
  [ 23 ] Bug #2412588 - CVE-2025-58183 kubernetes1.32: Unbounded allocation when parsing GNU sparse map [fedora-43]
        https://bugzilla.redhat.com/show_bug.cgi?id=2412588
  [ 24 ] Bug #2412803 - CVE-2025-58183 kubernetes1.32: Unbounded allocation when parsing GNU sparse map [fedora-42]
        https://bugzilla.redhat.com/show_bug.cgi?id=2412803
  [ 25 ] Bug #2414539 - kubernetes1.32-1.34.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2414539
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-547f14aef4' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

-- 
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Ubuntu 24: Docker 2.13.5 Important Security Notice 2026-6f2b2d1a9f8

November 23, 2025
Update to release v1.32.10 Resolves: rhbz#2414539 Resolves: rhbz#2398587, rhbz#2398848, rhbz#2399249, rhbz#2399522 Resolves: rhbz#2399703, rhbz#2399721, rhbz#2407788, rhbz#2408058 ...

Summary

Production-Grade Container Scheduling and Management.

Installs kubelet, the kubernetes agent on each machine in a

cluster. The kubernetes-client sub-package,

containing kubectl, is recommended but not strictly required.

The kubernetes-client sub-package should be installed on

control plane machines.

Update Information:

Update to release v1.32.10 Resolves: rhbz#2414539 Resolves: rhbz#2398587, rhbz#2398848, rhbz#2399249, rhbz#2399522 Resolves: rhbz#2399703, rhbz#2399721, rhbz#2407788, rhbz#2408058 Resolves: rhbz#2408315, rhbz#2408609, rhbz#2408672, rhbz#2408730 Resolves: rhbz#2409237, rhbz#2409527, rhbz#2409788, rhbz#2410202 Resolves: rhbz#2410477, rhbz#2410738, rhbz#2411117, rhbz#2411376 Resolves: rhbz#2411634, rhbz#2412569, rhbz#2412588, rhbz#2412803 Upstream fixes

Change Log

* Wed Nov 12 2025 Bradley G Smith - 1.32.10-1 - Update to release v1.32.10 - Resolves: rhbz#2414539 - Resolves: rhbz#2398587, rhbz#2398848, rhbz#2399249, rhbz#2399522 - Resolves: rhbz#2399703, rhbz#2399721, rhbz#2407788, rhbz#2408058 - Resolves: rhbz#2408315, rhbz#2408609, rhbz#2408672, rhbz#2408730 - Resolves: rhbz#2409237, rhbz#2409527, rhbz#2409788, rhbz#2410202 - Resolves: rhbz#2410477, rhbz#2410738, rhbz#2411117, rhbz#2411376 - Resolves: rhbz#2411634, rhbz#2412569, rhbz#2412588, rhbz#2412803 - Upstream fixes * Wed Nov 12 2025 Bradley G Smith - 1.32.9-2 - Revise template - Remove transition artifacts - from non-versioned kubernetes - Remove unneeded network rpms - Remove duplicate requires

References

[ 1 ] Bug #2398587 - CVE-2025-47910 kubernetes1.32: CrossOriginProtection bypass in net/http [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2398587 [ 2 ] Bug #2398848 - CVE-2025-47910 kubernetes1.32: CrossOriginProtection bypass in net/http [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2398848 [ 3 ] Bug #2399249 - CVE-2025-47906 kubernetes1.32: Unexpected paths returned from LookPath in os/exec [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2399249 [ 4 ] Bug #2399522 - CVE-2025-47906 kubernetes1.32: Unexpected paths returned from LookPath in os/exec [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2399522 [ 5 ] Bug #2399703 - CVE-2025-11065 kubernetes1.32: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2399703 [ 6 ] Bug #2399721 - CVE-2025-11065 kubernetes1.32: Go-viper's mapstruct...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-547f14aef4' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : kubernetes1.32
Product : Fedora 41
Version : 1.32.10
Release : 2.fc41
URL : https://github.com/kubernetes/kubernetes
Summary : Open Source Production-Grade Container Scheduling And Management Platform

Related News

Linux Security 2026: Emerging Risks Impacting Cloud and IoT Infrastructure
4 - 7 min read
Linux security sits at the center of modern infrastructure. Most production systems, cloud workloads, and IoT devices run on it in some form. That
Linux Integrity Verification: SHA256 and GPG Checks Explained
8 - 16 min read
Linux treats anything pulled from outside the system as untrusted until it is checked, and that expectation shapes how files move through real
Ubuntu 18.04 EOL: Understanding Security Management and Risks
5 - 9 min read
Linux security depends heavily on whether a system is still inside its support window. When that window closes, the system keeps running, and
Boosting Linux Security with DevOps Platforms for Automation and Compliance
3 - 6 min read
Most production workloads still land on Linux. That hasn't changed. What's shifted is how teams manage those systems at scale—especially when speed
Mitigating Security Risks from System Drift in Linux Environments
5 - 9 min read
You start to notice a pattern once you’ve spent enough time in incidents. Linux holds steady until the parts meant to stay fixed begin to wander.
Linux Security: Mitigating Model Inversion Attack Risks
4 - 7 min read
Machine learning now runs deep inside Linux security workflows, from containerized inference services to open-source model pipelines. These systems
Linux Desktop Adoption Surges to 5% with Security Gaps Identified
5 - 9 min read
Linux just cleared 5% of the U.S. desktop market, based on recent Linux adoption statistics. That’s small in absolute terms but meaningful if you’ve
SonicWall: Firewall Management and Security Lessons After Breach
5 - 10 min read
SonicWall confirmed a breach in its cloud backup system that exposed customer configuration files. It’s the kind of incident that looks small until

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved