Описание
Security update for go1.24-openssl
This update for go1.24-openssl fixes the following issues:
Update to version 1.24.4 (bsc#1236217):
- CVE-2025-22874 crypto/x509: ExtKeyUsageAny bypasses policy validation (bsc#1244158).
- CVE-2025-0913 os: inconsistent handling of O_CREATE|O_EXCL on Unix and Windows (bsc#1244157).
- CVE-2025-4673 net/http: sensitive headers not cleared on cross-origin redirect (bsc#1244156).
Список пакетов
SUSE Enterprise Storage 7.1
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server 15 SP3-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server 15 SP4-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server 15 SP5-LTSS
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
go1.24-openssl-1.24.4-150000.1.9.1
go1.24-openssl-doc-1.24.4-150000.1.9.1
go1.24-openssl-race-1.24.4-150000.1.9.1
Ссылки
- Link for SUSE-SU-2025:02120-1
- E-Mail link for SUSE-SU-2025:02120-1
- SUSE Security Ratings
- SUSE Bug 1236217
- SUSE Bug 1244156
- SUSE Bug 1244157
- SUSE Bug 1244158
- SUSE CVE CVE-2025-0913 page
- SUSE CVE CVE-2025-22874 page
- SUSE CVE CVE-2025-4673 page
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:go1.24-openssl-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-doc-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.24-openssl-1.24.4-150000.1.9.1
Ссылки
- CVE-2025-0913
- SUSE Bug 1244157
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:go1.24-openssl-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-doc-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.24-openssl-1.24.4-150000.1.9.1
Ссылки
- CVE-2025-22874
- SUSE Bug 1244158
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:go1.24-openssl-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-doc-1.24.4-150000.1.9.1
SUSE Enterprise Storage 7.1:go1.24-openssl-race-1.24.4-150000.1.9.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.24-openssl-1.24.4-150000.1.9.1
Ссылки
- CVE-2025-4673
- SUSE Bug 1244156