CLSA-2026-1777029448 containernetworking-plugins: Fix of CVE-2026-25679

rebuild with newer golang version 1.25.7-1.el96.tuxcare.els2 to fix the following CVE - CVE-2026-25679: reject IPv6 literals not at the start of the host subcomponent in net/url.Parse to prevent URL authority validation bypass...

Oracle Linux 8 : go-toolset:ol8 (ELSA-2026-6949)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6949 advisory. delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 Sync from CentOS Stream 9 - Related:...

Oracle Linux 9 : golang (ELSA-2026-2709)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2709 advisory. 1.25.7-1 - Update to Go 1.25.7 fips-1 - Resolves: RHEL-146476 Tenable has extracted the preceding description block directly from the Oracle Linux...

AZL-78988 CVE-2024-34155 affecting package golang 1.25.7-1

Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion...

AZL-79096 CVE-2022-30632 affecting package golang 1.25.7-1

Uncontrolled recursion in Glob in path/filepath before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path containing a large number of path separators...