Bug 2391649
| Summary: | CVE-2025-58058 checkpointctl: github.com/ulikunitz/xz leaks memory [fedora-42] | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Jon Moroney <jmoroney> |
| Component: | checkpointctl | Assignee: | Radostin Stoyanov <rstoyano> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 42 | CC: | adrian, go-sig, rstoyano, tis |
| Target Milestone: | --- | Keywords: | Security, SecurityTracking |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | {"flaws": ["a965347e-482c-4573-80d1-ab8f7a962d31"]} | ||
| Fixed In Version: | checkpointctl-1.4.0-2.el9 checkpointctl-1.4.0-2.fc42 checkpointctl-1.4.0-2.fc43 checkpointctl-1.4.0-3.fc43 checkpointctl-1.4.0-3.el9 checkpointctl-1.4.0-3.fc42 checkpointctl-1.4.0-3.fc41 | Doc Type: | --- |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2025-09-12 00:27:07 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 2391585 | ||
|
Description
Jon Moroney
2025-08-28 23:41:22 UTC
FEDORA-2025-aa879cbca1 (checkpointctl-1.4.0-1.fc42) has been submitted as an update to Fedora 42. https://bodhi.fedoraproject.org/updates/FEDORA-2025-aa879cbca1 FEDORA-2025-198295e38c (checkpointctl-1.4.0-1.fc43) has been submitted as an update to Fedora 43. https://bodhi.fedoraproject.org/updates/FEDORA-2025-198295e38c FEDORA-EPEL-2025-ac1be4bde2 (checkpointctl-1.4.0-1.el9) has been submitted as an update to Fedora EPEL 9. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-ac1be4bde2 FEDORA-EPEL-2025-ac1be4bde2 has been pushed to the Fedora EPEL 9 testing repository. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-ac1be4bde2 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-aa879cbca1 has been pushed to the Fedora 42 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-aa879cbca1` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-aa879cbca1 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-198295e38c has been pushed to the Fedora 43 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-198295e38c` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-198295e38c See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-9b094ba1d6 has been pushed to the Fedora 43 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-9b094ba1d6` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-9b094ba1d6 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-EPEL-2025-938ea797ca has been pushed to the Fedora EPEL 9 testing repository. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-938ea797ca See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-ba1dacf88c has been pushed to the Fedora 42 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-ba1dacf88c` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-ba1dacf88c See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. There is a serious issue in latest pacakge (1.4.0-2) - it drops Epoch so it doesn't update previous versions. Please rebuild with Epoch: 1 Thank you for your comment. Indeed, the Epoch field was accidently removed when applying the changes from https://src.fedoraproject.org/rpms/checkpointctl/pull-request/1 I've updated the package with a fix. FEDORA-EPEL-2025-938ea797ca (checkpointctl-1.4.0-2.el9) has been pushed to the Fedora EPEL 9 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-2025-ba1dacf88c (checkpointctl-1.4.0-2.fc42) has been pushed to the Fedora 42 stable repository. If problem still persists, please make note of it in this bug report. epel9 package is still missing new build with epoch fix. And I just checked fc42 package - it also didn't get release bump and rebuild. so while fixed in fedora git there is no fixed build. FEDORA-2025-9b094ba1d6 (checkpointctl-1.4.0-2.fc43) has been pushed to the Fedora 43 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-EPEL-2025-653f3a3664 (checkpointctl-1.4.0-3.el9) has been submitted as an update to Fedora EPEL 9. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-653f3a3664 FEDORA-2025-11b6deb0b8 (checkpointctl-1.4.0-3.fc42) has been submitted as an update to Fedora 42. https://bodhi.fedoraproject.org/updates/FEDORA-2025-11b6deb0b8 FEDORA-2025-eda09a0a51 (checkpointctl-1.4.0-3.fc43) has been submitted as an update to Fedora 43. https://bodhi.fedoraproject.org/updates/FEDORA-2025-eda09a0a51 FEDORA-2025-15f6a132bf (checkpointctl-1.4.0-3.fc41) has been submitted as an update to Fedora 41. https://bodhi.fedoraproject.org/updates/FEDORA-2025-15f6a132bf FEDORA-2025-eda09a0a51 has been pushed to the Fedora 43 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-eda09a0a51` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-eda09a0a51 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-EPEL-2025-653f3a3664 has been pushed to the Fedora EPEL 9 testing repository. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-653f3a3664 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-11b6deb0b8 has been pushed to the Fedora 42 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-11b6deb0b8` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-11b6deb0b8 See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-15f6a132bf has been pushed to the Fedora 41 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-15f6a132bf` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-15f6a132bf See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates. FEDORA-2025-eda09a0a51 (checkpointctl-1.4.0-3.fc43) has been pushed to the Fedora 43 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-EPEL-2025-653f3a3664 (checkpointctl-1.4.0-3.el9) has been pushed to the Fedora EPEL 9 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-2025-11b6deb0b8 (checkpointctl-1.4.0-3.fc42) has been pushed to the Fedora 42 stable repository. If problem still persists, please make note of it in this bug report. FEDORA-2025-15f6a132bf (checkpointctl-1.4.0-3.fc41) has been pushed to the Fedora 41 stable repository. If problem still persists, please make note of it in this bug report. |