Security update for go1.25-openssl SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:03524-1 Final 1 1 2025-10-10T10:32:57Z current 2025-10-10T10:32:57Z 2025-10-10T10:32:57Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for go1.25-openssl This update for go1.25-openssl fixes the following issues: Update to version 1.25.1, released 2025-09-03 (bsc#1244485). Security issues fixed: - CVE-2025-47910: net/http: `CrossOriginProtection` insecure bypass patterns not limited to exact matches (bsc#1249141). Other issues fixed: - go#74822 cmd/go: 'get toolchain@latest' should ignore release candidates - go#74999 net: WriteMsgUDPAddrPort should accept IPv4-mapped IPv6 destination addresses on IPv4 UDP sockets - go#75008 os/exec: TestLookPath fails on plan9 after CL 685755 - go#75021 testing/synctest: bubble not terminating - go#75083 os: File.Seek doesn't set the correct offset with Windows overlapped handles The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-3524,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3524,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3524,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3524,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3524,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3524,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3524,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3524,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3524,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3524,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3524,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3524,SUSE-Storage-7.1-2025-3524 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202503524-1/ Link for SUSE-SU-2025:03524-1 https://lists.suse.com/pipermail/sle-updates/2025-October/042065.html E-Mail link for SUSE-SU-2025:03524-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1244485 SUSE Bug 1244485 https://bugzilla.suse.com/1249141 SUSE Bug 1249141 https://www.suse.com/security/cve/CVE-2025-47910/ SUSE CVE CVE-2025-47910 page SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP5-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 go1.25-openssl-1.25.1-150000.1.6.1 go1.25-openssl-doc-1.25.1-150000.1.6.1 go1.25-openssl-race-1.25.1-150000.1.6.1 go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Enterprise Storage 7.1 go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Enterprise Storage 7.1 go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Enterprise Storage 7.1 go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 go1.25-openssl-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 go1.25-openssl-doc-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 go1.25-openssl-race-1.25.1-150000.1.6.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 When using http.CrossOriginProtection, the AddInsecureBypassPattern method can unexpectedly bypass more requests than intended. CrossOriginProtection then skips validation, but forwards the original request path, which may be served by a different handler without the intended security protections. CVE-2025-47910 SUSE Enterprise Storage 7.1:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Enterprise Storage 7.1:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Enterprise Storage 7.1:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP3-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP4-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server 15 SP5-LTSS:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:go1.25-openssl-race-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-doc-1.25.1-150000.1.6.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:go1.25-openssl-race-1.25.1-150000.1.6.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202503524-1/ https://www.suse.com/security/cve/CVE-2025-47910.html CVE-2025-47910 https://bugzilla.suse.com/1249141 SUSE Bug 1249141