Skip to content

fix: cves patch with go 1.25.10#381

Merged
Harsh4902 merged 1 commit into
microcks:masterfrom
mathieu-benoit:go1-25-10
May 14, 2026
Merged

fix: cves patch with go 1.25.10#381
Harsh4902 merged 1 commit into
microcks:masterfrom
mathieu-benoit:go1-25-10

Conversation

@mathieu-benoit
Copy link
Copy Markdown
Contributor

@mathieu-benoit mathieu-benoit commented May 13, 2026
edited
Loading

fix: CVEs patch with go 1.25.10 for the 2 container images.

Note: not upgrading to go 1.26 as in go.mod it's for now in 1.25, something that could be done in a further and dedicated PR.

Diff for the default container:
image

+ libcap        rpm     2.48-10.el9_7.1  2.48-10.el9
+ stdlib        golang  1.25.10          1.25.9
-     ├─   HIGH         CVE-2026-42499  [https://scout.docker.com/v/CVE-2026-42499] 7.5
-     ├─   HIGH         CVE-2026-39836  [https://scout.docker.com/v/CVE-2026-39836] 7.5
-     ├─   HIGH         CVE-2026-39820  [https://scout.docker.com/v/CVE-2026-39820] 7.5
-     ├─   HIGH         CVE-2026-33814  [https://scout.docker.com/v/CVE-2026-33814] 7.5
-     ├─   HIGH         CVE-2026-33811  [https://scout.docker.com/v/CVE-2026-33811] 7.5
-     ├─   MEDIUM       CVE-2026-39826  [https://scout.docker.com/v/CVE-2026-39826] 6.1
-     ├─   MEDIUM       CVE-2026-39823  [https://scout.docker.com/v/CVE-2026-39823] 6.1
-     └─   MEDIUM       CVE-2026-39825  [https://scout.docker.com/v/CVE-2026-39825] 5.3
+ systemd       rpm     252-55.el9_7.9   252-55.el9_7.8
+ systemd-libs  rpm     252-55.el9_7.9   252-55.el9_7.8

Diffs for the distroless container:
image

+ stdlib        golang  1.25.10          1.25.9
-     ├─   HIGH         CVE-2026-42499  [https://scout.docker.com/v/CVE-2026-42499] 7.5
-     ├─   HIGH         CVE-2026-39836  [https://scout.docker.com/v/CVE-2026-39836] 7.5
-     ├─   HIGH         CVE-2026-39820  [https://scout.docker.com/v/CVE-2026-39820] 7.5
-     ├─   HIGH         CVE-2026-33814  [https://scout.docker.com/v/CVE-2026-33814] 7.5
-     ├─   HIGH         CVE-2026-33811  [https://scout.docker.com/v/CVE-2026-33811] 7.5
-     ├─   MEDIUM       CVE-2026-39826  [https://scout.docker.com/v/CVE-2026-39826] 6.1
-     ├─   MEDIUM       CVE-2026-39823  [https://scout.docker.com/v/CVE-2026-39823] 6.1
-     └─   MEDIUM       CVE-2026-39825  [https://scout.docker.com/v/CVE-2026-39825] 5.3

@mathieu-benoit
fix: cves patch with go 1.25.10
8ce97a1 
Signed-off-by: Mathieu Benoit <mathieu-benoit@hotmail.fr>
@mathieu-benoit
Copy link
Copy Markdown
Contributor Author

mathieu-benoit commented May 13, 2026

Ready for your review, @Harsh4902 and team, please, and thanks!

Harsh4902
Harsh4902 approved these changes May 14, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@Harsh4902 Harsh4902 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Harsh4902 Harsh4902 added this to the Next milestone May 14, 2026
@Harsh4902 Harsh4902 merged commit d7e2aac into microcks:master May 14, 2026
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Harsh4902 Harsh4902 Harsh4902 approved these changes

@lbroudoux lbroudoux Awaiting requested review from lbroudoux lbroudoux is a code owner

@yada yada Awaiting requested review from yada yada is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

Next

Development

Successfully merging this pull request may close these issues.

2 participants

@mathieu-benoit @Harsh4902