[ALSA-2025:9317] Moderate: delve security update
Type:
security
Severity:
moderate
Release date:
2025-06-30
Description:
Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out of your way as much as possible. Security Fix(es): * net/[http:](http:) Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 delve-1.24.1-2.el10_0.aarch64.rpm fce680a35722e6bb7b6d8fe77865fbf03d7ef47848585bb929035926c9f9a4c5
ppc64le delve-1.24.1-2.el10_0.ppc64le.rpm 71ab6383aaf8cc5521b0566f15f680fd90fed2d141d12875e96996334a368b1a
x86_64 delve-1.24.1-2.el10_0.x86_64.rpm d6465f3eadfdf78f917db078a53bb4e8ebe2ff8fc70c02eab47c01243836ab93
x86_64_v2 delve-1.24.1-2.el10_0.x86_64_v2.rpm 6e29b2cfbb2e17e86d5663e6983d4c8538bdcdea97fa78ee0358ddfb16b23c13
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.