Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: go1.24 Important Security Issues Fix Advisory 2025:3682-1

suse
Calendar Grey October 20, 2025
Dist Suse Esm H88
SUSE's security update for go1.24 fixes issues impacting integrity and performance with important severity. Ensure proper installation!
* bsc#1236217 * bsc#1251253 * bsc#1251254 * bsc#1251255 * bsc#1251256

Summary

## This update for go1.24 fixes the following issues: go1.24.9 (released 2025-10-13) includes fixes to the crypto/x509 package. (bsc#1236217) * crypto/x509: TLS validation fails for FQDNs with trailing dot go1.24.8 (released 2025-10-07) includes security fixes to the archive/tar, crypto/tls, crypto/x509, encoding/asn1, encoding/pem, net/http, net/mail, net/textproto, and net/url packages, as well as bug fixes to the compiler, the linker, and the debug/pe, net/http, os, and sync/atomic packages. (bsc#1236217) CVE-2025-58189 CVE-2025-61725 CVE-2025-58188 CVE-2025-58185 CVE-2025-58186 CVE-2025-61723 CVE-2025-58183 CVE-2025-47912 CVE-2025-58187 CVE-2025-61724: * bsc#1251255 CVE-2025-58189: crypto/tls: ALPN negotiation error contains attacker controlled information

Topics%20covered

Topics Covered

security advisory security issue SuSE important deny service go1.24

References

* bsc#1236217

* bsc#1251253

* bsc#1251254

* bsc#1251255

* bsc#1251256

* bsc#1251257

* bsc#1251258

* bsc#1251259

* bsc#1251260

* bsc#1251261

* bsc#1251262

Cross-

* CVE-2025-47912

* CVE-2025-58183

* CVE-2025-58185

* CVE-2025-58186

* CVE-2025-58187

* CVE-2025-58188

* CVE-2025-58189

* CVE-2025-61723

* CVE-2025-61724

* CVE-2025-61725

CVSS scores:

* CVE-2025-47912 ( SUSE ): 8.8

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N

* CVE-2025-47912 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

* CVE-2025-58183 ( SUSE ): 4.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2025-58183 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2025-58185 ( SUSE ): 6.9

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:3682-1
Release Date: 2025-10-20T13:12:46Z
Rating: important

Topics%20covered

Topics Covered

security advisory security issue SuSE important deny service go1.24

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here