SUSE-CU-2025:500-1: Security update of bci/golang
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Jan 30 14:28:55 UTC 2025
SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:500-1
Container Tags : bci/golang:1.22 , bci/golang:1.22.11 , bci/golang:1.22.11-2.48.13 , bci/golang:oldstable , bci/golang:oldstable-2.48.13
Container Release : 48.13
Severity : important
Type : security
References : 1218424 1236045 1236046 CVE-2024-45336 CVE-2024-45341
-----------------------------------------------------------------
The container bci/golang was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:281-1
Released: Wed Jan 29 08:34:54 2025
Summary: Security update for go1.22
Type: security
Severity: important
References: 1218424,1236045,1236046,CVE-2024-45336,CVE-2024-45341
This update for go1.22 fixes the following issues:
- Update to go1.22.11 (bsc#1218424)
- CVE-2024-45341: Properly check for IPv6 hosts in URIs (bsc#1236045)
- CVE-2024-45336: Persist header stripping across repeated redirects (bsc#1236046)
The following package changes have been done:
- go1.22-doc-1.22.11-150000.1.39.1 updated
- go1.22-1.22.11-150000.1.39.1 updated
- go1.22-race-1.22.11-150000.1.39.1 updated
More information about the sle-container-updates
mailing list