[El-errata] ELSA-2025-7466 Moderate: Oracle Linux 10 delve and golang security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Jul 1 05:13:47 UTC 2025
Oracle Linux Security Advisory ELSA-2025-7466
http://linux.oracle.com/errata/ELSA-2025-7466.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
x86_64:
delve-1.24.1-1.0.1.el10_0.x86_64.rpm
go-toolset-1.23.7-1.el10_0.x86_64.rpm
golang-1.23.7-1.el10_0.x86_64.rpm
golang-bin-1.23.7-1.el10_0.x86_64.rpm
golang-docs-1.23.7-1.el10_0.noarch.rpm
golang-misc-1.23.7-1.el10_0.noarch.rpm
golang-src-1.23.7-1.el10_0.noarch.rpm
golang-tests-1.23.7-1.el10_0.noarch.rpm
aarch64:
delve-1.24.1-1.0.1.el10_0.aarch64.rpm
go-toolset-1.23.7-1.el10_0.aarch64.rpm
golang-1.23.7-1.el10_0.aarch64.rpm
golang-bin-1.23.7-1.el10_0.aarch64.rpm
golang-docs-1.23.7-1.el10_0.noarch.rpm
golang-misc-1.23.7-1.el10_0.noarch.rpm
golang-src-1.23.7-1.el10_0.noarch.rpm
golang-tests-1.23.7-1.el10_0.noarch.rpm
SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/delve-1.24.1-1.0.1.el10_0.src.rpm
http://oss.oracle.com/ol10/SRPMS-updates/golang-1.23.7-1.el10_0.src.rpm
Related CVEs:
CVE-2024-45336
CVE-2024-45341
CVE-2025-22866
Description of changes:
delve
[1.24.1-1.0.1]
- Disable DWARF compression which has issues (Alex Burmashev)
[1.24.1-1]
- Update Delve to 1.24.1
[1.22.1-6]
- plans/ci.fmf: Update repo
golang
[1.23.7-1]
- Update to 1.23.7
- golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints (CVE-2024-45341)
- golang: net/http: net/http: sensitive headers incorrectly sent after cross-domain redirect (CVE-2024-45336)
- crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec (CVE-2025-22866)
More information about the El-errata
mailing list