Fedora has rolled out important security updates for the packages prometheus-podman-exporter and podman-tui, specifically addressing a memory leak vulnerability identified as CVE-2025-58058, which affects the xz library utilized by these applications. These updates are available for Fedora versions 41, 42, and the Beta version of 43.
- prometheus-podman-exporter: version 1.18.1-1.fc41
- podman-tui: version 1.8.0-1.fc41
- Fedora 42:
- prometheus-podman-exporter: version 1.18.1-1.fc42
- podman-tui: version 1.8.0-1.fc42
- Fedora 43:
- prometheus-podman-exporter: version 1.18.1-1.fc43
- podman-tui: version 1.8.0-1.fc43
- podman-tui: A terminal user interface for managing Podman environments, compatible with versions 4 and 5 of Podman. It communicates with the Podman service and can connect to remote Podman instances via SSH.
In addition to these updates, users should stay informed about ongoing security advisories and best practices for managing their Fedora systems effectively. Regular updates not only enhance security but also improve functionality and user experience with the latest features and bug fixes
Update Details:
- Fedora 41:- prometheus-podman-exporter: version 1.18.1-1.fc41
- podman-tui: version 1.8.0-1.fc41
- Fedora 42:
- prometheus-podman-exporter: version 1.18.1-1.fc42
- podman-tui: version 1.8.0-1.fc42
- Fedora 43:
- prometheus-podman-exporter: version 1.18.1-1.fc43
- podman-tui: version 1.8.0-1.fc43
Package Descriptions:
- prometheus-podman-exporter: This package serves as a Prometheus exporter for Podman environments, providing metrics related to containers, pods, images, volumes, and networks.- podman-tui: A terminal user interface for managing Podman environments, compatible with versions 4 and 5 of Podman. It communicates with the Podman service and can connect to remote Podman instances via SSH.
Installation Note:
Users can apply these updates using the "dnf" update program. For example, to upgrade prometheus-podman-exporter for Fedora 41, the command would be:bashsu -c 'dnf upgrade --advisory FEDORA-2025-5d38037ea1'The updates are signed with the Fedora Project GPG key for security verification.
Conclusion:
These updates are crucial for maintaining system security and performance, especially for users leveraging Podman for container management. Users are encouraged to keep their systems up to date to mitigate potential vulnerabilities.In addition to these updates, users should stay informed about ongoing security advisories and best practices for managing their Fedora systems effectively. Regular updates not only enhance security but also improve functionality and user experience with the latest features and bug fixes
Prometheus-Podman-Exporter and Podman-TUI updates for Fedora
Fedora has released security updates for several packages, including prometheus-podman-exporter and podman-tui. The updates address a memory leak vulnerability (CVE-2025-58058) in the xz library used by these packages. Updates are available for Fedora 41, 42, and 43 Beta.
Fedora 41 Update: prometheus-podman-exporter-1.18.1-1.fc41
Fedora 41 Update: podman-tui-1.8.0-1.fc41
Fedora 42 Update: prometheus-podman-exporter-1.18.1-1.fc42
Fedora 42 Update: podman-tui-1.8.0-1.fc42
Fedora 43 Update: prometheus-podman-exporter-1.18.1-1.fc43
Fedora 43 Update: podman-tui-1.8.0-1.fc43Prometheus-Podman-Exporter and Podman-TUI updates for Fedora @ Linux Compatible
