CLSA-2026-1774996482

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1774996482

Upstream

CVE-2026-25679

Published

2026-03-31T23:48:11Z

Modified

2026-06-01T00:32:46.316697325Z

Summary

golang: Fix of CVE-2026-25679

Details

CVE-2026-25679: fix insufficient validation of host/authority in url.Parse that allowed invalid URLs; strengthen parsing and reject malformed host and authority components
fix-smtp-test-expired-cert: fix expired TLS test certificate in net/smtp tests; replace with upstream long-lived cert

References

https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1774996482.html

Affected packages

TuxCare:AlmaLinux:9.6

go-toolset

Package

Name: go-toolset
Purl: pkg:rpm/tuxcare/go-toolset?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang

Package

Name: golang
Purl: pkg:rpm/tuxcare/golang?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-bin

Package

Name: golang-bin
Purl: pkg:rpm/tuxcare/golang-bin?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-docs

Package

Name: golang-docs
Purl: pkg:rpm/tuxcare/golang-docs?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-misc

Package

Name: golang-misc
Purl: pkg:rpm/tuxcare/golang-misc?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-race

Package

Name: golang-race
Purl: pkg:rpm/tuxcare/golang-race?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-src

Package

Name: golang-src
Purl: pkg:rpm/tuxcare/golang-src?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"

golang-tests

Package

Name: golang-tests
Purl: pkg:rpm/tuxcare/golang-tests?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.25.7-1.el9_6.tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1774996482.json"