Oracle Linux Security Advisory ELSA-2025-7466 http://linux.oracle.com/errata/ELSA-2025-7466.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: delve-1.24.1-1.0.1.el10_0.x86_64.rpm go-toolset-1.23.7-1.el10_0.x86_64.rpm golang-1.23.7-1.el10_0.x86_64.rpm golang-bin-1.23.7-1.el10_0.x86_64.rpm golang-docs-1.23.7-1.el10_0.noarch.rpm golang-misc-1.23.7-1.el10_0.noarch.rpm golang-src-1.23.7-1.el10_0.noarch.rpm golang-tests-1.23.7-1.el10_0.noarch.rpm aarch64: delve-1.24.1-1.0.1.el10_0.aarch64.rpm go-toolset-1.23.7-1.el10_0.aarch64.rpm golang-1.23.7-1.el10_0.aarch64.rpm golang-bin-1.23.7-1.el10_0.aarch64.rpm golang-docs-1.23.7-1.el10_0.noarch.rpm golang-misc-1.23.7-1.el10_0.noarch.rpm golang-src-1.23.7-1.el10_0.noarch.rpm golang-tests-1.23.7-1.el10_0.noarch.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/delve-1.24.1-1.0.1.el10_0.src.rpm http://oss.oracle.com/ol10/SRPMS-updates/golang-1.23.7-1.el10_0.src.rpm Related CVEs: CVE-2024-45336 CVE-2024-45341 CVE-2025-22866 Description of changes: delve [1.24.1-1.0.1] - Disable DWARF compression which has issues (Alex Burmashev) [1.24.1-1] - Update Delve to 1.24.1 [1.22.1-6] - plans/ci.fmf: Update repo golang [1.23.7-1] - Update to 1.23.7 - golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints (CVE-2024-45341) - golang: net/http: net/http: sensitive headers incorrectly sent after cross-domain redirect (CVE-2024-45336) - crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec (CVE-2025-22866) _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata
