-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-76033f35ea 2026-03-27 00:14:48.799072+00:00 --------------------------------------------------------------------------------
Name : headscale Product : Fedora 44 Version : 0.28.0 Release : 1.fc44 URL : https://github.com/juanfont/headscale Summary : Self-hosted implementation of the Tailscale control server Description : An open source, self-hosted implementation of the Tailscale control server.
-------------------------------------------------------------------------------- Update Information:
update to 0.28.0 -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 18 2026 Jonathan Wright jonathan@almalinux.org - 0.28.0-1 - Update to 0.28.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2408299 - CVE-2025-58189 headscale: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408299 [ 2 ] Bug #2408721 - CVE-2025-61725 headscale: Excessive CPU consumption in ParseAddress in net/mail [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408721 [ 3 ] Bug #2409772 - CVE-2025-61723 headscale: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409772 [ 4 ] Bug #2410722 - CVE-2025-58185 headscale: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410722 [ 5 ] Bug #2411618 - CVE-2025-58188 headscale: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411618 [ 6 ] Bug #2412709 - CVE-2025-58183 headscale: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412709 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-76033f35ea' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------