ALT Linux Team

Package golang update in sisyphus on 2025-03-05

ALT-PU-2025-3858-1

Package golang updated to version 1.24.1-alt1 for branch sisyphus in task 376926.

Closed vulnerabilities

Published: 2025-03-12
Modified: 2025-03-18

CVE-2025-22870

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.

References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top