Lucene search
+L

70 matches found

rocky
rocky
added yesterday3 views

go-toolset:rhel8 security, bug fix, and enhancement update

An update is available for delve, module.delve, module.golang, golang. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset provides the Go programming...

9.6CVSS6.5AI score0.00939EPSS
Exploits0
osv
osv
added 3 days ago2 views

RLSA-2026:37435 Important: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...

8.2CVSS6.5AI score0.00478EPSS
Exploits0References3
osv
osv
added last week1 views

SUSE-SU-2026:2818-1 Security update for go1.26

This update for go1.26 fixes the following issues - Update to version go1.26.5 bsc1255111 - CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. - CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello bsc1271015...

7.8CVSS6.2AI score0.00413EPSS
Exploits0References8
osv
osv
added 2026/07/09 12:0 a.m.3 views

ALSA-2026:37436 Important: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...

9.6CVSS6.3AI score0.00478EPSS
Exploits0References5
almalinux
almalinux
added 2026/07/09 12:0 a.m.5 views

Important: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...

9.6CVSS6.4AI score0.00478EPSS
Exploits0References5
osv
osv
added 2026/07/07 4:57 p.m.2 views

OPENSUSE-SU-2026:21254-1 Security update for go1.26-openssl

This update for go1.26-openssl fixes the following issues: Update to go1.26.4 bsc1255111. Security issues fixed: - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. -...

9.8CVSS6.8AI score0.00939EPSS
Exploits0References52
osv
osv
added 2026/06/26 12:5 p.m.4 views

RLSA-2026:29980 Moderate: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: net/textproto: golang: Golang net/textproto: Misleading error messages via input injection CVE-2026-42507 Bug Fixes and Enhancements: Update Go to version 1.26.4+1 rhel-10.2.z JIRA:Rocky Linux-183347 For more detail...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References2
rocky
rocky
added 2026/06/26 12:3 p.m.6 views

golang security, bug fix, and enhancement update

An update is available for golang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...

7.5CVSS5.8AI score0.00939EPSS
Exploits0
osv
osv
added 2026/06/25 12:0 a.m.3 views

ALSA-2026:29980 Moderate: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: net/textproto: golang: Golang net/textproto: Misleading error messages via input injection CVE-2026-42507 Bug Fixes and Enhancements: Update Go to version 1.26.4+1 almalinux-10.2.z JIRA:AlmaLinux-183347 For more...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References4
osv
osv
added 2026/06/17 8:36 a.m.2 views

SUSE-SU-2026:22155-1 Security update for go1.25

This update for go1.25 fixes the following issues Update to go1.25.11 bsc1244485: - CVE-2026-27145: crypto/x509: split candidate hostname only once bsc1267450. - CVE-2026-42504: mime: quadratic complexity in WordDecoder.DecodeHeader bsc1267442. - CVE-2026-42507: net/textproto: arbitrary input are...

7.5CVSS5.9AI score0.00939EPSS
Exploits0References10
osv
osv
added 2026/06/17 8:36 a.m.3 views

SUSE-SU-2026:22154-1 Security update for go1.26

This update for go1.26 fixes the following issues Update to go1.26.4 bsc1255111: - CVE-2026-27145: crypto/x509: split candidate hostname only once bsc1267450. - CVE-2026-42504: mime: quadratic complexity in WordDecoder.DecodeHeader bsc1267442. - CVE-2026-42507: net/textproto: arbitrary input are...

7.5CVSS5.9AI score0.00939EPSS
Exploits0References10
osv
osv
added 2026/05/17 8:17 p.m.9 views

SUSE-SU-2026:21804-1 Security update for go1.26

This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...

7.5CVSS6AI score0.00813EPSS
Exploits0References25
nessus
nessus
added 2026/05/16 12:0 a.m.21 views

SUSE SLED15 / SLES15 Security Update : go1.25 (SUSE-SU-2026:1862-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1862-1 advisory. This update for go1.25 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling...

7.5CVSS5.9AI score0.00813EPSS
Exploits0References36
osv
osv
added 2026/05/14 10:34 p.m.7 views

SUSE-SU-2026:1862-1 Security update for go1.25

This update for go1.25 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: 'go tool pack' does...

7.5CVSS5.8AI score0.00813EPSS
Exploits0References25
osv
osv
added 2026/04/24 11:0 a.m.11 views

CLSA-2026-1772465492 podman: Fix of 4 CVEs

rebuild with newer golang version 1.25.7-1.el96.tuxcare.els1 to fix the following CVEs - CVE-2025-68121: fix TLS session resumption bypass by preventing shared auto-rotated ticket keys in Config and validating full certificate chain expiry - CVE-2025-61726: limit parsed URL query parameters to...

10CVSS7.1AI score0.00765EPSS
Exploits4References1
nessus
nessus
added 2026/04/22 12:0 a.m.6 views

SUSE SLES16 Security Update : go1.25 (SUSE-SU-2026:21200-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:21200-1 advisory. Update to go1.25.8 bsc1244485: - CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. - CVE-2026-27139: o...

7.5CVSS5.9AI score0.0052EPSS
Exploits0References11
osv
osv
added 2026/04/20 1:54 p.m.14 views

SUSE-SU-2026:21355-1 Security update for go1.25

This update for go1.25 fixes the following issues: - Update to version go1.25.9 bsc1244485. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. - CVE-2026-27144:...

9.8CVSS5.7AI score0.00658EPSS
Exploits0References20
oraclelinux
oraclelinux
added 2026/04/20 12:0 a.m.17 views

delve security update

1.25.2-3.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-3 - Rebuild with latest Go...

7.5CVSS5.8AI score0.00606EPSS
Exploits0
osv
osv
added 2026/04/16 10:48 a.m.14 views

CLSA-2026-1776336504 git-lfs: Fix of CVE-2026-25679

Rebuild with Go 1.25.8 to fix Go standard library CVE - CVE-2026-25679: reject invalid IPv6 host literals in net/url.Parse to prevent URL validation bypass...

7.5CVSS7.3AI score0.0052EPSS
Exploits0References1
suse
suse
added 2026/04/14 12:40 p.m.6 views

Security update for go1.25

This update for go1.25 fixes the following issues: Update to go1.25.9 bsc1244485. CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. CVE-2026-27144: cmd/compile: no-op...

7.5CVSS5.9AI score0.00658EPSS
Exploits0References38
Rows per page
Query Builder