Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

SUSE: 2025:0060-1 moderate: govulncheck-vulndb security updates and fixes

suse
Calendar Grey January 10, 2025
Dist Suse Esm H88
This revision tackles 20 security vulnerabilities and integrates essential enhancements for govulncheck-vulndb within Red Hat environments.
* jsc#PED-11136 Cross-References: * CVE-2024-12678 * CVE-2024-25131

Summary

## This update for govulncheck-vulndb fixes the following issues: * Update to version 0.0.20250108T191942 2025-01-08T19:19:42Z. Refs jsc#PED-11136 Go CVE Numbering Authority IDs added or updated with aliases: * GO-2025-3371 GHSA-2r2v-9pf8-6342 * GO-2025-3374 CVE-2025-22130 GHSA-j4jw-m6xr-fv6c * Update to version 0.0.20250107T160406 2025-01-07T16:04:06Z. Refs jsc#PED-11136 Go CVE Numbering Authority IDs added or updated with aliases: * GO-2025-3363 GO-2025-3364 GO-2025-3367 GO-2025-3368 * GO-2024-3355 CVE-2024-54148 GHSA-r7j8-5h9c-f6fx * GO-2024-3356 CVE-2024-55947 GHSA-qf5v-rp47-55gg * GO-2024-3357 CVE-2024-56362 GHSA-xwx7-p63r-2rj8 * GO-2024-3358 CVE-2024-45387 GHSA-vq94-9pfv-ccqr * GO-2024-3359 CVE-2024-28892 GHSA-5qww-56gc-f66c

References

* jsc#PED-11136

Cross-

* CVE-2024-12678

* CVE-2024-25131

* CVE-2024-25133

* CVE-2024-28892

* CVE-2024-43803

* CVE-2024-45338

* CVE-2024-45387

* CVE-2024-54148

* CVE-2024-55196

* CVE-2024-55947

* CVE-2024-56362

* CVE-2024-56513

* CVE-2024-56514

* CVE-2024-9779

* CVE-2025-21609

* CVE-2025-21613

* CVE-2025-21614

* CVE-2025-22130

CVSS scores:

* CVE-2024-12678 ( SUSE ): 7.1

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

* CVE-2024-12678 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2024-12678 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2024-25131 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-25133 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Announcement ID: SUSE-SU-2025:0060-1
Release Date: 2025-01-10T11:33:34Z
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here