122 matches found
Security update for helm
This update for helm rebuilds it against the current GO security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15.6 zyppe...
SUSE-SU-2026:0325-1 Security update for kubernetes
This update for kubernetes rebuilds it against the current GO security release...
Security update for container-suseconnect
This update for container-suseconnect rebuilds it against the current GO security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...
SUSE-SU-2026:0319-1 Security update for container-suseconnect
This update for container-suseconnect rebuilds it against the current GO security release...
OESA-2025-2863 golang security update
. Security Fixes: crypto/x509: Exclude subdomain constraints do not restrict wildcard SANs Exclude subdomain constraints in certificate chains do not restrict the use of wildcard SANs in leaf certificates. For example, excluding the constraint on the subdomain test.example.com does not prevent th...
SUSE SLES15 Security Update : container-suseconnect (SUSE-SU-2025:4373-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:4373-1 advisory. This update for container-suseconnect rebuilds it against current go security release. Tenable has extracted the preceding description block...
Security update for container-suseconnect
This update for container-suseconnect rebuilds it against current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: Containers...
SUSE-SU-2025:4373-1 Security update for container-suseconnect
This update for container-suseconnect rebuilds it against current go security release...
SUSE-SU-2025:4336-1 Security update for go1.25
This update for go1.25 fixes the following issues: go1.25.5 released 2025-12-02 includes two security fixes to the crypto/x509 package, as well as bug fixes to the mime and os packages. bsc1244485 CVE-2025-61729 CVE-2025-61727: go76461 go76445 bsc1254431 security: fix CVE-2025-61729 crypto/x509:...
RLSA-2025:21816 Moderate: delve and golang security update
The Go Programming Language. Security Fixes: golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the...
delve and golang security update
An update is available for golang, delve. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Go Programming Language. Security Fixes: golang: archive/tar:...
EUVD-2021-19910
Malware in sbrugna...
EUVD-2022-29676
Malicious code in bioql PyPI...
EUVD-2021-28779
Malicious code in bioql PyPI...
GO-2025-3956 Unexpected paths returned from LookPath in os/exec
If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath "", ".", and "..", can result in the binaries listed in the PATH being unexpectedly returned...
gosec
This is a Go AST Abstract Syntax Tree scanner for identifying security vulnerabilities in Go code. The scanner is called "gosec" and is part of the GolangCI project. It can be installed using the command "go get github.com/golangci/gosec/cmd/gosec/...". The scanner can be configured to run a subs...
OESA-2025-2181 golang security update
. Security Fixes: The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VC...
OESA-2025-2180 golang security update
. Security Fixes: A vulnerability was found in Google Go up to 1.23.11/1.24.5 Programming Language Software. It has been declared as problematic.The manipulation of the argument PATH with an unknown input leads to a unknown weakness.As an impact it is known to affect integrity.Upgrading to versio...
golang security update
1.24.6-1 - Update to Go 1.24.6 fips-1 - Resolves: RHEL-106464...
CVE-2024-56138
notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. This issue was identified during Quarkslab's audit of the timestamp feature. During the timestamp signature generation, the revocation status of the certificates used to...