Описание
Important: image-builder security update
A local binary for building customized OS artifacts such as VM images and OSTree commits. Uses osbuild under the hood.
Security Fix(es):
- net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 10
Связанные CVE
Исправления
- Red Hat - 2445356
Связанные уязвимости
CVSS3: 7.5
ubuntu
4 месяца назад
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVSS3: 7.5
redhat
4 месяца назад
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVSS3: 7.5
nvd
4 месяца назад
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVSS3: 7.5
debian
4 месяца назад
url.Parse insufficiently validated the host/authority component and ac ...