Ike.ninja

Fedora 42: docker-buildkit CVE-2025-58183 Critical Unbounded Allocation

Nov27

by Ike on November 27, 2025 at 1:29 am

Posted In: Fedora Linux Distribution - Security Advisories

Fedora 42 docker-buildkit critical update overview

Update to release v0.26.1 Update to release v0.26.0 Resolves: rhbz#2412681, rhbz#2412761 Upstream new features and fixes dependency override for moby/policy-helper needed for license (default

└ Tags: Fedora Linux Distribution - Security Advisories

Comment

Fedora 43: 7zip Critical Directory Traversal RCE CVE-2025-11001

Nov27

by Ike on November 27, 2025 at 12:53 am

Posted In: Fedora Linux Distribution - Security Advisories

7zip Software Update Notification in Fedora 43

Various CVE fixes, most importantly CVE-2025-11001 This also backports the Debian patch (PR unfortunately stalled upstream, with no communication from upstream developers) to not echo passwords when dealing with encrypted archives.

└ Tags: Fedora Linux Distribution - Security Advisories

Comment

Debian: kdeconnect Critical Impersonation Threat DSA-6063-1 CVE-2025-66270

Nov26

by Ike on November 26, 2025 at 10:31 pm

Posted In: Debian Linux Distribution - Security Advisories

KDE Connect vulnerability impact illustration

It was discovered that missing validation of the device ID during handshakes in KDE Connect, a tool to integrate smart phones to a desktop, could allow an attacker to impersonate another device. The oldstable distribution (bookworm) is not affected. For the stable distribution (trixie), this problem has been fixed in

└ Tags: Debian Linux Distribution - Security Advisories

Comment