Fedora has released several security updates for its Fedora 42 and Fedora 43 versions. One of these updates is for the "proxychains-ng" package, which redirects connections through proxy servers and fixes a denial-of-service vulnerability (CVE-2025-34451) by updating to the latest master version. Another update affects the "gnupg2" package, a utility for secure communication and data storage, which has been updated to fix several vulnerabilities (CVE-2025-68973 and CVE-2025-68972).

Fedora 43 Update: proxychains-ng-4.17-8.fc43
Fedora 42 Update: gnupg2-2.4.9-1.fc42
Fedora 42 Update: proxychains-ng-4.17-8.fc42

[SECURITY] Fedora 43 Update: proxychains-ng-4.17-8.fc43

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-58fe871812
2026-01-06 01:11:43.905792+00:00
--------------------------------------------------------------------------------

Name : proxychains-ng
Product : Fedora 43
Version : 4.17
Release : 8.fc43
URL : https://github.com/rofl0r/proxychains-ng
Summary : Redirect connections through proxy servers
Description :
ProxyChains NG is based on ProxyChains.

ProxyChains NG hooks network-related (TCP only) libc functions in dynamically
linked programs via a preloaded DSO (dynamic shared object) and redirects the
connections through one or more SOCKS4a/5 or HTTP proxies.

Since Proxy Chains NG relies on the dynamic linker, statically linked binaries
are not supported.

--------------------------------------------------------------------------------
Update Information:

Update to master to fix CVE-2025-34451
--------------------------------------------------------------------------------
ChangeLog:

* Sun Dec 28 2025 Pablo Greco [psgreco@gmail.com] - 4.17-8
- Update to master to fix warning and add comment
* Sat Dec 27 2025 Pablo Greco [psgreco@gmail.com] - 4.17-7
- Update to master to fix CVE-2025-34451
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2423793 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-10]
https://bugzilla.redhat.com/show_bug.cgi?id=2423793
[ 2 ] Bug #2423794 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=2423794
[ 3 ] Bug #2423795 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2423795
[ 4 ] Bug #2423796 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423796
[ 5 ] Bug #2423797 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2423797
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-58fe871812' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: gnupg2-2.4.9-1.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-e630ec5c0a
2026-01-06 00:52:00.404988+00:00
--------------------------------------------------------------------------------

Name : gnupg2
Product : Fedora 42
Version : 2.4.9
Release : 1.fc42
URL : https://www.gnupg.org/
Summary : Utility for secure communication and data storage
Description :
GnuPG is GNU's tool for secure communication and data storage. It can
be used to encrypt data and to create digital signatures. It includes
an advanced key management facility and is compliant with the proposed
OpenPGP Internet standard as described in RFC2440 and the S/MIME
standard as described by several RFCs.

GnuPG 2.0 is a newer version of GnuPG with additional support for
S/MIME. It has a different design philosophy that splits
functionality up into several modules. The S/MIME and smartcard functionality
is provided by the gnupg2-smime package.

--------------------------------------------------------------------------------
Update Information:

New upstream release 2.4.9 fixing several vulnerabilities
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jan 1 2026 Clemens Lang [cllang@redhat.com] - 2.4.9-1
- New upstream release 2.4.9
- Fixes CVE-2025-68973 ( https://gpg.fail/memcpy)
- Fixes https://gpg.fail/sha1
- Fixes https://gpg.fail/detached
* Fri May 16 2025 Jakub Jelen [jjelen@redhat.com] - 2.4.8-1
- New upstream release 2.4.8
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2425718 - CVE-2025-68973 gnupg2: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2425718
[ 2 ] Bug #2425765 - CVE-2025-68972 gnupg2: GnuPG: Signature bypass via form feed character in signed messages [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2425765
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-e630ec5c0a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

[SECURITY] Fedora 42 Update: proxychains-ng-4.17-8.fc42

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-ec760de8e2
2026-01-06 00:52:00.404926+00:00
--------------------------------------------------------------------------------

Name : proxychains-ng
Product : Fedora 42
Version : 4.17
Release : 8.fc42
URL : https://github.com/rofl0r/proxychains-ng
Summary : Redirect connections through proxy servers
Description :
ProxyChains NG is based on ProxyChains.

ProxyChains NG hooks network-related (TCP only) libc functions in dynamically
linked programs via a preloaded DSO (dynamic shared object) and redirects the
connections through one or more SOCKS4a/5 or HTTP proxies.

Since Proxy Chains NG relies on the dynamic linker, statically linked binaries
are not supported.

--------------------------------------------------------------------------------
Update Information:

Update to master to fix CVE-2025-34451
--------------------------------------------------------------------------------
ChangeLog:

* Sun Dec 28 2025 Pablo Greco [psgreco@gmail.com] - 4.17-8
- Update to master to fix warning and add comment
* Sat Dec 27 2025 Pablo Greco [psgreco@gmail.com] - 4.17-7
- Update to master to fix CVE-2025-34451
* Fri Jul 25 2025 Fedora Release Engineering [releng@fedoraproject.org] - 4.17-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2423793 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-10]
https://bugzilla.redhat.com/show_bug.cgi?id=2423793
[ 2 ] Bug #2423794 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-8]
https://bugzilla.redhat.com/show_bug.cgi?id=2423794
[ 3 ] Bug #2423795 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [epel-9]
https://bugzilla.redhat.com/show_bug.cgi?id=2423795
[ 4 ] Bug #2423796 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423796
[ 5 ] Bug #2423797 - CVE-2025-34451 proxychains-ng: proxychains-ng: Denial of Service due to stack-based buffer overflow via crafted proxy configuration [fedora-43]
https://bugzilla.redhat.com/show_bug.cgi?id=2423797
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-ec760de8e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--