Skip to content

[v4.9-rhel] CVE-2025-47913, bump to x/crypto v0.43.0 #27883

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
TomSweeneyRedHat wants to merge 2 commits into
base: v4.9-rhel
Choose a base branch
from
Open

[v4.9-rhel] CVE-2025-47913, bump to x/crypto v0.43.0 #27883

TomSweeneyRedHat wants to merge 2 commits into from

Conversation

@TomSweeneyRedHat
Copy link
Member

@TomSweeneyRedHat TomSweeneyRedHat commented Jan 9, 2026
edited
Loading

Addresses CVE-2025-47913 by bumping golang.org/x/crypto to v0.43.0

Fixes: https://issues.redhat.com/browse/RHEL-134789, https://issues.redhat.com/browse/RHEL-130976,
https://issues.redhat.com/browse/OCPBUGS-67110

Checklist

Ensure you have completed the following checklist for your pull request to be reviewed:

  • Certify you wrote the patch or otherwise have the right to pass it on as an open-source patch by signing all
    commits. (git commit -s). (If needed, use git commit -s --amend). The author email must match
    the sign-off email address. See CONTRIBUTING.md
    for more information.
  • Referenced issues using Fixes: #00000 in commit message (if applicable)
  • Tests have been added/updated (or no tests are needed)
  • Documentation has been updated (or no documentation changes are needed)
  • All commits pass make validatepr (format/lint checks)
  • Release note entered in the section below (or None if no user-facing changes)

Does this PR introduce a user-facing change?

None

@TomSweeneyRedHat TomSweeneyRedHat added the No New Tests Allow PR to proceed without adding regression tests label Jan 9, 2026
@TomSweeneyRedHat
[v4.9-rhel] Bump Fedora in .cirrus
74b488f 
We need a higher version of Go in our Fedora, bump the version to 42
in the ci testing system.

Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

No New Tests Allow PR to proceed without adding regression tests

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@TomSweeneyRedHat