[CLSA-2026:1784188646] golang: Fix of CVE-2026-27145
Type:
security
Severity:
Moderate
Release date:
2026-07-16 07:57:48 UTC
Description:
- CVE-2026-27145: fix crypto/x509 quadratic hostname verification by splitting the candidate hostname only once
CVEs fixed:
Updated packages:
  • go-toolset-1.22.9-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:e020d9dc6306fc8ab807a9c6af1f56ca0b6b77257ea622869011e00e7831aefc
  • golang-1.22.9-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:f4838f9dc9275ea3282ebc5dc1a4e7956f8f1f353c8454a69ef6baf03966733f
  • golang-bin-1.22.9-1.el9_2.tuxcare.els18.x86_64.rpm
    sha:8aa69bb1fb87e5c5ada583e3ec84f43834ab791b62d2775e25ef84553722ef20
  • golang-docs-1.22.9-1.el9_2.tuxcare.els18.noarch.rpm
    sha:cd2a2f976801604f2edf38b507a189ec77c86ae58da147639074d973f2084226
  • golang-misc-1.22.9-1.el9_2.tuxcare.els18.noarch.rpm
    sha:98698bfdebb983576702b840cd9ceec533717974bb828163467f4cc7e7800dec
  • golang-src-1.22.9-1.el9_2.tuxcare.els18.noarch.rpm
    sha:3ebba2c9d608c6ca7e8231ec9d91eafd06b84e85c283a33530e07949eda371ba
  • golang-tests-1.22.9-1.el9_2.tuxcare.els18.noarch.rpm
    sha:f9d5f1a3afc042903d84b0eb68d56cb66b19e8135ca7088a38f0e5f5a565255f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.