Fedora Linux has announced important security updates for two packages: open62541 and perl-Authen-SASL, across different versions of its distribution.
- Server Improvements: Enhanced validation for EventFilter and UserTokenPolicy.
- Client Enhancements: Addressed potential infinite loops and added better timestamp checks for SecurityTokens.
- Memory Management: Resolved memory leaks in OpenSSL SecurityPolicies.
- Build Improvements: Fixed parsing issues and build-system edge cases.
- Security Fix: Addressed CVE-2025-40918, which involved an insecure source of randomness, now requiring a dependency on Crypt::URandom.
- Deprecations: Marked several modules as deprecated according to RFC standards and updated module metadata for better clarity.
- `su -c 'dnf upgrade --advisory FEDORA-2025-2b2997564c'`
- `su -c 'dnf upgrade --advisory FEDORA-2025-c2afaee8fe'`
For perl-Authen-SASL, the command is:
- `su -c 'dnf upgrade --advisory FEDORA-2025-fddaaaf9f0'`
Open62541 Updates
For Fedora 41 and Fedora 42, the open62541 library, which is a C-based implementation of the OPC UA protocol, has been updated to version 1.4.13. This update includes several critical fixes and improvements:- Server Improvements: Enhanced validation for EventFilter and UserTokenPolicy.
- Client Enhancements: Addressed potential infinite loops and added better timestamp checks for SecurityTokens.
- Memory Management: Resolved memory leaks in OpenSSL SecurityPolicies.
- Build Improvements: Fixed parsing issues and build-system edge cases.
Perl-Authen-SASL Update
Additionally, Fedora 42 has also updated the perl-Authen-SASL package to version 2.1900. This package provides a framework for SASL authentication. Key changes include:- Security Fix: Addressed CVE-2025-40918, which involved an insecure source of randomness, now requiring a dependency on Crypt::URandom.
- Deprecations: Marked several modules as deprecated according to RFC standards and updated module metadata for better clarity.
Installation Instructions
Users can install these updates using the `dnf` package manager. For open62541, the advisory commands for Fedora 41 and 42 are:- `su -c 'dnf upgrade --advisory FEDORA-2025-2b2997564c'`
- `su -c 'dnf upgrade --advisory FEDORA-2025-c2afaee8fe'`
For perl-Authen-SASL, the command is:
- `su -c 'dnf upgrade --advisory FEDORA-2025-fddaaaf9f0'`
Additional Notes
All packages are signed with the Fedora Project GPG key for security. Users are encouraged to ensure their systems are up-to-date with these critical patches to maintain optimal security and functionality. For more information on updates and package management, users may refer to the Fedora project documentation.Conclusion
These updates reflect Fedora's commitment to maintaining high security and performance standards in its software packages. Users should prioritize applying these updates to protect against vulnerabilities and to benefit from the latest features and improvementsOpen62541 and perl-Authen-SASL updates for Fedora
Fedora Linux has received security updates for open62541 and perl-Authen-SASL:
Fedora 41 Update: open62541-1.4.13-1.fc41
Fedora 42 Update: open62541-1.4.13-1.fc42
Fedora 42 Update: perl-Authen-SASL-2.1900-1.fc42Open62541 and perl-Authen-SASL updates for Fedora @ Linux Compatible