SUSE-CU-2025:501-1: Security update of bci/golang
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Jan 30 14:29:16 UTC 2025
SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:501-1
Container Tags : bci/golang:1.23 , bci/golang:1.23.5 , bci/golang:1.23.5-1.48.13 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.48.13
Container Release : 48.13
Severity : important
Type : security
References : 1229122 1236045 1236046 CVE-2024-45336 CVE-2024-45341
-----------------------------------------------------------------
The container bci/golang was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:280-1
Released: Wed Jan 29 08:33:57 2025
Summary: Security update for go1.23
Type: security
Severity: important
References: 1229122,1236045,1236046,CVE-2024-45336,CVE-2024-45341
This update for go1.23 fixes the following issues:
- Update to go1.23.5 (bsc#1229122)
- CVE-2024-45341: Properly check for IPv6 hosts in URIs (bsc#1236045)
- CVE-2024-45336: Persist header stripping across repeated redirects (bsc#1236046)
The following package changes have been done:
- go1.23-doc-1.23.5-150000.1.18.1 updated
- go1.23-1.23.5-150000.1.18.1 updated
- go1.23-race-1.23.5-150000.1.18.1 updated
More information about the sle-container-updates
mailing list