[CLSA-2026:1782721550] skopeo: Fix of CVE-2026-32281
Type:
security
Severity:
Important
Release date:
2026-06-29 08:26:04 UTC
Description:
- CVE-2026-32281: rebuild against golang >= 1.25.7-1.el9_6.tuxcare.els7 to fix denial-of-service in crypto/x509 policy validation, which is unexpectedly inefficient when a certificate chain contains a very large number of policy mappings
CVEs fixed:
Updated packages:
  • skopeo-1.18.1-2.el9_6.tuxcare.els4.x86_64.rpm
    sha:8fdbe716f3f9e898161b80b1f4d4cebc5f251fbe0df7bed7ab35f1b76ed5d1ca
  • skopeo-tests-1.18.1-2.el9_6.tuxcare.els4.x86_64.rpm
    sha:136b7ab1d7ccfb1b641e600479702bfd1404d803173a95874aac887ffc685d7e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.