365 matches found
RLSA-2026:38995 Important: go-toolset:rhel8 security, bug fix, and enhancement update
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 crypto/x509: golang: golang crypto/x509: Deni...
go-toolset:rhel8 security, bug fix, and enhancement update
An update is available for delve, module.delve, module.golang, golang. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset provides the Go programming...
OPENSUSE-SU-2026:21341-1 Security update for go1.26
This update for go1.26 fixes the following issues - Update to version go1.26.5 bsc1255111. - CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. - CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello bsc1271015...
OPENSUSE-SU-2026:21324-1 Security update for go1.25
This update for go1.25 fixes the following issues - Update to version go1.25.12 bsc1244485. - CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. - CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. - CVE-2026-27142: html/template: URLs in meta content...
Important: Red Hat Security Advisory: go-toolset:rhel8 security, bug fix, and enhancement update
An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
SUSE-SU-2026:22638-1 Security update for go1.25-openssl
This update for go1.25-openssl fixes the following issues - Update to version go1.25.12 bsc1244485. - CVE-2025-61732: cmd/cgo: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. - CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated session...
golang security, bug fix, and enhancement update
An update is available for golang. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...
RLSA-2026:37436 Important: golang security, bug fix, and enhancement update
The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...
RLSA-2026:37435 Important: golang security, bug fix, and enhancement update
The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal...
golang security, bug fix, and enhancement update
An update is available for golang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...
AlmaLinux 9 : golang (ALSA-2026:37435)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:37435 advisory. golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Root:...
RHEL 8 : go-toolset:rhel8 (RHSA-2026:38995)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:38995 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes:...
RockyLinux 10 : golang (RLSA-2026:37436)
The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:37436 advisory. golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing CVE-2026-39821 os: golang: Go os.Roo...
Oracle Linux 9 : golang (ELSA-2026-37435)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-37435 advisory. 1.26.5-1.0.1 - EXPERIMENTAL: Introduce fipsnoenforceems GODEBUG var 1.26.5-1 - Update to Go 1.26.5 fips-1 - Resolves: RHEL-193476 1.25.7-1 - Update to...
SUSE SLED15 / SLES15 Security Update : go1.25 (SUSE-SU-2026:2817-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2817-1 advisory. This update for go1.25 fixes the following issues - Update to version go1.25.12 bsc1244485. - CVE-2026-25679:...
RHEL 9 : golang (RHSA-2026:37435)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:37435 advisory. The golang packages provide the Go programming language compiler. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna:...
Important: Red Hat Security Advisory: golang security, bug fix, and enhancement update
An update for golang is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
SUSE-SU-2026:2818-1 Security update for go1.26
This update for go1.26 fixes the following issues - Update to version go1.26.5 bsc1255111 - CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. - CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello bsc1271015...
openSUSE 16 Security Update : hauler (openSUSE-SU-2026:21262-1)
The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:21262-1 advisory. Changes in hauler: - update to 2.0.1 bsc1269433, CVE-2026-48702: bump go to 1.26.4 to squash CVE noise Full v2 Release notes:...
OPENSUSE-SU-2026:11212-1 go1.25-1.25.12-1.1 on GA media
These are all security issues fixed in the go1.25-1.25.12-1.1 package on the GA media of openSUSE Tumbleweed...