SUSE-SU-2026:2093-1 Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: 'go tool...

SUSE-SU-2026:1423-1 Security update for podman

This update for podman rebuilds it against the current go 1.25 security release...

PT-2026-23662

Name of the Vulnerable Software and Affected Versions AWS Lambda affected versions not specified Description A flaw exists in AWS Lambda base images utilizing stdlib. Specifically, when validating a certificate chain with multiple email address constraints that share common local portions but...

PT-2026-23663

Name of the Vulnerable Software and Affected Versions AWS Lambda affected versions not specified Description A flaw exists where certificate verification can lead to a program crash. This occurs when a certificate within a chain lacks a DNS name while another certificate in the same chain has...

PT-2026-23661

Name of the Vulnerable Software and Affected Versions AWS Lambda affected versions not specified Description The url.Parse function did not properly validate the host or authority component of URLs, allowing the acceptance of invalid URLs. This issue impacts the standard library in 27 Lambda base...

PT-2026-23664

Name of the Vulnerable Software and Affected Versions AWS Lambda versions affected versions not specified Description On Unix platforms, when listing directory contents using File.ReadDir or File.Readdir, the returned FileInfo could reference a file outside the root directory in which the file wa...

SUSE SLES15 Security Update : cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer (SUSE-SU-2026:0571-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0571-1 advisory. Update to version 1.64.0 - Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.64.0 Also cdi was rebuilt...

SUSE SLES15 / openSUSE 15 Security Update : kubernetes-client (SUSE-SU-2025:4380-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4380-1 advisory. This update for kubernetes client rebuilds it against current the go release to fix bugs and security issues in the go stdlib...

Security update for kubernetes-client

This update for kubernetes client rebuilds it against current the go release to fix bugs and security issues in the go stdlib. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

SUSE-SU-2025:4381-1 Security update for kubernetes-client

This update for kubernetes client rebuilds it against current the go release to fix bugs and security issues in the go stdlib...

Security update for kubernetes-client

This update for kubernetes client rebuilds it against current the go release to fix bugs and security issues in the go stdlib. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

PT-2025-48775

Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A flaw exists where an excluded subdomain constraint within a certificate chain does not effectively limit the use of wildcard Subject Alternative Names SANs in the leaf...

CVE-2025-65109

Minder is an open source software supply chain security platform. In Minder Helm version 0.20241106.3386+ref.2507dbf and Minder Go versions from 0.0.72 to 0.0.83, Minder users may fetch content in the context of the Minder server, which may include URLs which the user would not normally have acce...

SUSE: Security Advisory (SUSE-SU-2025:03115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Before Go 1.20, the RSA based key exchange methods in crypto/tls may exhibit a timing side channel

...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.25 (SUSE-SU-2025:02924-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02924-1 advisory. go1.25 released 2025-08-12 is a major release of Go. go1.25.x minor releases will be provided...

SUSE-SU-2025:02924-1 Security update for go1.25

go1.25 released 2025-08-12 is a major release of Go. go1.25.x minor releases will be provided through August 2026. https://github.com/golang/go/wiki/Go-Release-Cycle go1.25 arrives six months after Go 1.24. Most of its changes are in the implementation of the toolchain, runtime, and libraries. As...

SUSE-SU-2024:0442-1 Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: - Set ExclusiveArch conditionally depending on th...

SUSE-SU-2023:4807-1 Security update for container-suseconnect

This update of container-suseconnect fixes the following issues: - rebuild the package with the go 1.21 security release bsc1212475...

SUSE-SU-2023:3834-1 Security update for container-suseconnect

This update of container-suseconnect fixes the following issues: - rebuild the package with the go 1.21 security release bsc1212475...