Issued:: 2025-06-17
Updated:: 2025-06-17

RHSA-2025:9172 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: go-toolset:rhel8 security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.

Security Fix(es):

net/http: Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Fixes

BZ - 2358493 - CVE-2025-22871 net/http: Request smuggling due to acceptance of invalid chunked data in net/http

CVEs

CVE-2025-22871

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
delve-1.5.0-2.module+el8.4.0+8864+58b0fcdb.src.rpm	SHA-256: 82330956b947a41b6641b4a58b476507d2aadb0fb314fb775c2a12bb8786733d
go-toolset-1.15.14-3.module+el8.4.0+22765+91da4d3f.src.rpm	SHA-256: 60c380bd18f2ebad31ca78dcf75724e54134583a8b8d46d6d0867d167b39a70d
golang-1.15.14-15.module+el8.4.0+23171+c7105e94.src.rpm	SHA-256: 5c9782b2569f2a9d2eb677c1f01f45ed24bd93a84280db3954751ac327112418
x86_64
delve-1.5.0-2.module+el8.4.0+8864+58b0fcdb.x86_64.rpm	SHA-256: ea15304bd24355b219103aaf4c774ca82ec47b9def5f4bd2c38b125ad914fe8a
delve-debuginfo-1.5.0-2.module+el8.4.0+8864+58b0fcdb.x86_64.rpm	SHA-256: 94e586cbd77e5cc8b98fda58a90d5ff365ddab1d155dd5f4e0ad4eac90e7ce1f
delve-debugsource-1.5.0-2.module+el8.4.0+8864+58b0fcdb.x86_64.rpm	SHA-256: f654ab129b47aa437f717237ffc37c66a4716d81ac8575066939c76811eb0c6b
go-toolset-1.15.14-3.module+el8.4.0+22765+91da4d3f.x86_64.rpm	SHA-256: 1ce3686ed1e446ef30b0d7ff75718b2098a04f1703f84d00086359ed90bb348e
golang-1.15.14-15.module+el8.4.0+23171+c7105e94.x86_64.rpm	SHA-256: 75b89a304b8d82acd1fc87d5e3e4a3d6df6eba6de6ebd5a98d790e6924e7dfbf
golang-bin-1.15.14-15.module+el8.4.0+23171+c7105e94.x86_64.rpm	SHA-256: 3dd7ba5ada9413f9b464844c9ef0dff58c229c391a87a24ec87c3d265ea9559d
golang-docs-1.15.14-15.module+el8.4.0+23171+c7105e94.noarch.rpm	SHA-256: 19004e06ec8f352ecc53d67bceb5bbab14ba4e9a1c0efbd33f430fe90e8de9f2
golang-misc-1.15.14-15.module+el8.4.0+23171+c7105e94.noarch.rpm	SHA-256: 051b1b731073d3bb8c8ae4b4044ba1e7e3f7b06ff2483ec1aceb9326d92629dc
golang-race-1.15.14-15.module+el8.4.0+23171+c7105e94.x86_64.rpm	SHA-256: f5ee5a18346ee35511affcf278d4e2d75b51eb0fe80b4a3289002377524b6e50
golang-src-1.15.14-15.module+el8.4.0+23171+c7105e94.noarch.rpm	SHA-256: 323a4cc8c5ce39b283b56c56cb39c7b2a1281bb662a1fd54b653e23f599ec93d
golang-tests-1.15.14-15.module+el8.4.0+23171+c7105e94.noarch.rpm	SHA-256: 9015a7b2c9c2e83db6b18190ecda64c84ec4eb75e4e9c452004fa8abc81fff79

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation