SUSE-SU-2024:1587-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 10 May 2024, 07:18
Last modified:04 Feb 2026, 02:51

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

10 May 2024, 07:18
Published
Vulnerability first disclosed
04 Feb 2026, 02:51
Last Modified
Vulnerability information updated

Description

Security update for go1.22 This update for go1.22 fixes the following issues: Update to go1.22.3: - CVE-2024-24787: cmd/go: arbitrary code execution during build on darwin (bsc#1224017) - CVE-2024-24788: net: high cpu usage in extractExtendedRCode (bsc#1224018) - cmd/compile: Go 1.22.x failed to be bootstrapped from 386 to ppc64le - cmd/compile: changing a hot concrete method to interface method triggers a PGO ICE - runtime: deterministic fallback hashes across process boundary - net/http: TestRequestLimit/h2 becomes significantly more expensive and slower after x/net@v0.23.0

Affected Systems

  • opensusego1.22&distro=openSUSE Leap 15.5

    < 1.22.3-150000.1.15.1

  • opensusego1.22&distro=openSUSE Leap 15.6

    < 1.22.3-150000.1.15.1

  • susego1.22&distro=SUSE Linux Enterprise Module for Development Tools 15 SP5

    < 1.22.3-150000.1.15.1

References (6)