SUSE-SU-2025:0285-1

Description

Security update for go1.24 This update for go1.24 fixes the following issues: This update ships go1.24rc2 (bsc#1236217). - CVE-2024-45341: Properly check for IPv6 hosts in URIs (bsc#1236045) - CVE-2024-45336: Persist header stripping across repeated redirects (bsc#1236046) - CVE-2025-22865: Avoid panic when parsing partial PKCS#1 private keys (bsc#1236361) - CVE-2024-45340: Restore netrc preferences for GOAUTH and fix domain lookup (bsc#1236360)

Affected Systems

• opensuse•go1.24&distro=openSUSE Leap 15.6

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Enterprise Storage 7.1

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Module for Development Tools 15 SP6

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server 15 SP5-LTSS

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

  < 1.24rc2-150000.1.3.1

• suse•go1.24&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP5

  < 1.24rc2-150000.1.3.1

References (10)

• https://www.suse.com/support/update/announcement/2025/suse-su-20250285-1/
• https://bugzilla.suse.com/1236045
• https://bugzilla.suse.com/1236046
• https://bugzilla.suse.com/1236217
• https://bugzilla.suse.com/1236360
• https://bugzilla.suse.com/1236361
• https://www.suse.com/security/cve/CVE-2024-45336
• https://www.suse.com/security/cve/CVE-2024-45340
• https://www.suse.com/security/cve/CVE-2024-45341
• https://www.suse.com/security/cve/CVE-2025-22865