ALSA-2026:19022

See a problem?
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json
JSON Data
https://api.osv.dev/v1/vulns/ALSA-2026:19022
Related
  • CVE-2026-25679
  • CVE-2026-27137
Published
2026-05-19T00:00:00Z
Modified
2026-05-26T16:59:24.189698906Z
Summary
Important: golang security update
Details

The golang packages provide the Go programming language compiler.

Security Fix(es):

  • crypto/x509: Incorrect enforcement of email constraints in crypto/x509 (CVE-2026-27137)
  • net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:10
go-toolset

Package

Name
go-toolset
Purl
pkg:rpm/almalinux/go-toolset

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang

Package

Name
golang
Purl
pkg:rpm/almalinux/golang

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-bin

Package

Name
golang-bin
Purl
pkg:rpm/almalinux/golang-bin

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-docs

Package

Name
golang-docs
Purl
pkg:rpm/almalinux/golang-docs

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-misc

Package

Name
golang-misc
Purl
pkg:rpm/almalinux/golang-misc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-race

Package

Name
golang-race
Purl
pkg:rpm/almalinux/golang-race

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-src

Package

Name
golang-src
Purl
pkg:rpm/almalinux/golang-src

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"
golang-tests

Package

Name
golang-tests
Purl
pkg:rpm/almalinux/golang-tests

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.26.2-2.el10_2.alma.1

Database specific

source 
"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:19022.json"