ALSA-2025:10676

See a problem?

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2025:10676

Related

CVE-2025-4673

Published

2025-07-09T00:00:00Z

Modified

2026-02-04T03:11:43.586011Z

Summary

Moderate: golang security update

Details

The golang packages provide the Go programming language compiler.

Security Fix(es):

net/http: Sensitive headers not cleared on cross-origin redirect in net/http (CVE-2025-4673)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:9

go-toolset

Package

Name: go-toolset
Purl: pkg:rpm/almalinux/go-toolset

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang

Package

Name: golang
Purl: pkg:rpm/almalinux/golang

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-bin

Package

Name: golang-bin
Purl: pkg:rpm/almalinux/golang-bin

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-docs

Package

Name: golang-docs
Purl: pkg:rpm/almalinux/golang-docs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-misc

Package

Name: golang-misc
Purl: pkg:rpm/almalinux/golang-misc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-race

Package

Name: golang-race
Purl: pkg:rpm/almalinux/golang-race

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-src

Package

Name: golang-src
Purl: pkg:rpm/almalinux/golang-src

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"

golang-tests

Package

Name: golang-tests
Purl: pkg:rpm/almalinux/golang-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.24.4-1.el9_6

Database specific

source

"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2025:10676.json"