SUSE-SU-2024:1573-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 09 May 2024, 11:18
Last modified:04 Feb 2026, 03:38

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

09 May 2024, 11:18
Published
Vulnerability first disclosed
04 Feb 2026, 03:38
Last Modified
Vulnerability information updated

Description

Security update for go1.22 This update for go1.22 fixes the following issues: Update to go1.22.3: - CVE-2024-24787: cmd/go: arbitrary code execution during build on darwin (bsc#1224017) - CVE-2024-24788: net: high cpu usage in extractExtendedRCode (bsc#1224018) - cmd/compile: Go 1.22.x failed to be bootstrapped from 386 to ppc64le - cmd/compile: changing a hot concrete method to interface method triggers a PGO ICE - runtime: deterministic fallback hashes across process boundary - net/http: TestRequestLimit/h2 becomes significantly more expensive and slower after x/net@v0.23.0

Affected Systems

  • susego1.22&distro=SUSE Linux Enterprise Software Development Kit 12 SP5

    < 1.22.3-1.9.1

References (6)