Overview

File _patchinfo of Package patchinfo.35775

<patchinfo incident="35775">
  <category>security</category>
  <rating>important</rating>
  <packager>msmeissn</packager>
<issue tracker="cve" id="2024-24789"/>
<issue tracker="bnc" id="1225973">VUL-0: CVE-2024-24789: go1.21,go1.22: archive/zip: mishandling of corrupt central directory record</issue>
<issue tracker="bnc" id="1225974">VUL-0: CVE-2024-24790: go1.21,go1.22: net/netip: unexpected behavior from Is methods for IPv4-mapped IPv6 addresses</issue>
<issue tracker="bnc" id="1227314">VUL-0: CVE-2024-24791 go1.21,go1.22: net/http: denial of service due to improper 100-continue handling</issue>
<issue tracker="cve" id="2024-24790"/>
<issue tracker="cve" id="2024-24791"/>
  <summary>Security update for container-suseconnect</summary>
  <description>
This update for container-suseconnect rebuilds it against current go1.21.13.1.

Security issues fixed: CVE-2024-24789, CVE-2024-24790, CVE-2024-24791
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places