Alerts This Week
Warning Icon 1 1,123
Alerts This Week
Warning Icon 1 1,123

SUSE Releases Important Security Update for Go1.25: 2025:03547-1

suse
Calendar Grey October 13, 2025
Dist Suse Esm H88
A critical security update for SUSE fixing multiple vulnerabilities in go1.25 relates to performance and memory issues.
* bsc#1244485 * bsc#1251253 * bsc#1251254 * bsc#1251255 * bsc#1251256

Summary

## This update for go1.25 fixes the following issues: go1.25.2 (released 2025-10-07) includes security fixes to the archive/tar, crypto/tls, crypto/x509, encoding/asn1, encoding/pem, net/http, net/mail, net/textproto, and net/url packages, as well as bug fixes to the compiler, the runtime, and the context, debug/pe, net/http, os, and sync/atomic packages. (bsc#1244485) CVE-2025-58189 CVE-2025-61725 CVE-2025-58188 CVE-2025-58185 CVE-2025-58186 CVE-2025-61723 CVE-2025-58183 CVE-2025-47912 CVE-2025-58187 CVE-2025-61724: * bsc#1251255 CVE-2025-58189: crypto/tls: ALPN negotiation error contains attacker controlled information * bsc#1251253 CVE-2025-61725: net/mail: excessive CPU consumption in ParseAddress

Topics%20covered

Topics Covered

security advisory SuSE important memory exhaustion Go excessive CPU consumption

References

* bsc#1244485

* bsc#1251253

* bsc#1251254

* bsc#1251255

* bsc#1251256

* bsc#1251257

* bsc#1251258

* bsc#1251259

* bsc#1251260

* bsc#1251261

* bsc#1251262

Cross-

* CVE-2025-47912

* CVE-2025-58183

* CVE-2025-58185

* CVE-2025-58186

* CVE-2025-58187

* CVE-2025-58188

* CVE-2025-58189

* CVE-2025-61723

* CVE-2025-61724

* CVE-2025-61725

CVSS scores:

* CVE-2025-47912 ( SUSE ): 9.4

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N

* CVE-2025-47912 ( SUSE ): 8.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

* CVE-2025-58183 ( SUSE ): 4.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2025-58183 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2025-58185 ( SUSE ): 6.9

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:03547-1
Release Date: 2025-10-11T01:22:57Z
Rating: important

Topics%20covered

Topics Covered

security advisory SuSE important memory exhaustion Go excessive CPU consumption

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here