Release date:
2026-03-06 16:03:16 UTC
Description:
- rebuild with newer golang version 1.22.9-1.el9_2.tuxcare.els6 to fix the following CVEs
- CVE-2025-61726: limit parsed URL query parameters to mitigate excessive memory
consumption during form parsing
- CVE-2025-61729: fix excessive resource consumption when constructing hostname
error messages for certificates with many SANs
- CVE-2025-68121: fix TLS session resumption bypass by preventing shared
auto-rotated ticket keys in Config and validating full certificate chain expiry
Updated packages:
-
skopeo-1.11.2-0.1.el9.tuxcare.els3.x86_64.rpm
sha:ee54e983e59cab1759bb40249082d86d7e392bca74a958b7e4422626eb1306da
-
skopeo-tests-1.11.2-0.1.el9.tuxcare.els3.x86_64.rpm
sha:ae05595aac455e2a58a061b85189b8a41f52d96b2b630410f665aa39517da1b7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
