Release date:
2026-03-31 23:48:11 UTC
Description:
- CVE-2026-25679: fix insufficient validation of host/authority in url.Parse
that allowed invalid URLs; strengthen parsing and reject malformed host and
authority components
- fix-smtp-test-expired-cert: fix expired TLS test certificate in net/smtp tests;
replace with upstream long-lived cert
Updated packages:
-
go-toolset-1.25.7-1.el9_6.tuxcare.els2.x86_64.rpm
sha:c9e9ea83b5610c2d69a7b55da61ba6c4a03b5014840f2a4b48e1f5bcdf34ee2e
-
golang-1.25.7-1.el9_6.tuxcare.els2.x86_64.rpm
sha:e8f57c25f4dfadcf092a38e0067eb6a7eec276b83f0fdbf2322b80048c9f9e1f
-
golang-bin-1.25.7-1.el9_6.tuxcare.els2.x86_64.rpm
sha:73b10648668a1ae050c41130291b3692b2b0fba0975ad5e603cc19cedbdaf351
-
golang-docs-1.25.7-1.el9_6.tuxcare.els2.noarch.rpm
sha:7b1abb671836735c6a520695250e64de7b0fc175b1929e068e721cc1005691d1
-
golang-misc-1.25.7-1.el9_6.tuxcare.els2.noarch.rpm
sha:ffb63e31d140b4d82a00b394c69b40777c9a3870c210632b2e90414d45241480
-
golang-race-1.25.7-1.el9_6.tuxcare.els2.x86_64.rpm
sha:ab6dc89b9717c8f11fc780d9cff8509484f7ec79a310436013b5105d259384ca
-
golang-src-1.25.7-1.el9_6.tuxcare.els2.noarch.rpm
sha:d0f2ac20d7f9f60cf9f600b3ebee0f0b5cdc95972dcc0a43250cd936dee98af3
-
golang-tests-1.25.7-1.el9_6.tuxcare.els2.noarch.rpm
sha:0f6898dbdffffb6cf591d05b4961ab7d1243b7cc3de41dd3f20abc9eac898872
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
