8 matches found
Security update for go1.25-openssl (critical)
openSUSE security update: security update for go1.25-openssl ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21319-1 Rating: critical References: bsc1170826 bsc1244485 bsc1245878 bsc1256818 bsc1257692 bsc1259264 bsc1259265 bsc1259268 bsc1261653...
SUSE-SU-2026:21405-1 Security update for container-suseconnect
This update for container-suseconnect fixes the following issues: Changes in container-suseconnect: - switch to build with go 1.25...
SUSE-SU-2026:1488-1 Security update for rekor
This update for rekor rebuilds it against the current go 1.25 security release...
SUSE-SU-2026:1486-1 Security update for cosign
This update for cosign rebuilds it against the current go 1.25 security release...
Security update for podman
This update for podman rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15....
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.25 (SUSE-SU-2025:4336-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4336-1 advisory. go1.25.5 released 2025-12-02 includes two security fixes to the crypto/x509 package, as well as...
Fedora 42 : migrate (2025-57302ba8ea)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-57302ba8ea advisory. - Update to 4.19.0 - Address CVEs by rebuilding with Go 1.24.10 Tenable has extracted the preceding description block directly from the Fedora...
AZL-32123 CVE-2023-45287 affecting package msft-golang for versions less than 1.20.0-1
Before Go 1.20, the RSA based TLS key exchanges used the math/big library, which is not constant time. RSA blinding was applied to prevent timing attacks, but analysis shows this may not have been fully effective. In particular it appears as if the removal of PKCS1 padding may leak timing...