Summary
The Go programming language team released updates for versions 1.25.6 and 1.24.12 to fix six vulnerabilities that enable remote code execution and denial-of-service attacks. The flaws affect core packages including ZIP processing, HTTP form parsing, and TLS communications.
Take Action:
There are multiple flaws in Go language that may affect your applications. Check the advisory and update your Go toolchain to version 1.25.6 or 1.24.12. Then rebuild all production binaries using the updated versions.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)