During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.

Unexpected work during chain building in crypto/x509

During chain building, the amount of work that is done is not correctl ...

Security update for go1.25

Security update for go1.25

Moderate: golang-github-openprinting-ipp-usb security update

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.

Уязвимость языка программирования Go, связанная с ошибками процедуры подтверждения подлинности сертификата, позволяющая нарушителю вызвать отказ в обслуживании

Security update for go1.26-openssl

Security update for go1.26

Security update for go1.26-openssl

Security update for go1.25-openssl

Security update for go1.26-openssl

Security update for go1.25-openssl

Security update for go1.26

During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls.

Уязвимость компонента crypto-x509 языка программирования Go, позволяющая нарушителю вызвать отказ в обслуживании

Уязвимость golang

Important: image-builder security update

Important: image-builder security update