OESA-2025-2864

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-2864

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2025-2864.json

JSON Data

https://api.osv.dev/v1/vulns/OESA-2025-2864

Upstream

CVE-2025-61727

Published

2025-12-30T12:16:27Z

Modified

2025-12-30T13:00:09.141224Z

Summary

golang security update

Details

Security Fix(es):

crypto/x509: Exclude subdomain constraints do not restrict wildcard SANs Exclude subdomain constraints in certificate chains do not restrict the use of wildcard SANs in leaf certificates. For example, excluding the constraint on the subdomain test.example.com does not prevent the leaf certificate from claiming SAN*. example.com.(CVE-2025-61727)

Database specific

{
    "severity": "Medium"
}

References

Affected packages

openEuler:22.03-LTS-SP3 / golang

Package

Name: golang
Purl: pkg:rpm/openEuler/golang&distro=openEuler-22.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.17.3-46.oe2203sp3

Ecosystem specific

{
    "noarch": [
        "golang-devel-1.17.3-46.oe2203sp3.noarch.rpm",
        "golang-help-1.17.3-46.oe2203sp3.noarch.rpm"
    ],
    "src": [
        "golang-1.17.3-46.oe2203sp3.src.rpm"
    ],
    "aarch64": [
        "golang-1.17.3-46.oe2203sp3.aarch64.rpm"
    ],
    "x86_64": [
        "golang-1.17.3-46.oe2203sp3.x86_64.rpm"
    ]
}