ALSA-2026:19022

[ALSA-2026:19022] Important: golang security update

Type:

security

Severity:

important

Release date:

2026-05-26

Description:

The golang packages provide the Go programming language compiler.  

Security Fix(es):  

  * crypto/x509: Incorrect enforcement of email constraints in crypto/x509 (CVE-2026-27137)
  * net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	golang-bin-1.26.2-2.el10_2.alma.1.aarch64.rpm	10517947b4ccdd648d4875b6199863bda3d9ed68d1f453d62652e99e84c737f3
aarch64	golang-1.26.2-2.el10_2.alma.1.aarch64.rpm	978a7b0420f8df11922784015e19003f90c450d373c3e859e17b953de489e2cd
aarch64	go-toolset-1.26.2-2.el10_2.alma.1.aarch64.rpm	b04696d856be18a801c6de5901cdd40eaa2cb8e800322416eee5a1dd6de17273
aarch64	golang-race-1.26.2-2.el10_2.alma.1.aarch64.rpm	b465e141816fe1cd7a24dc41caee130e86f0c81b371e3da729999ecd457ebab0
noarch	golang-tests-1.26.2-2.el10_2.alma.1.noarch.rpm	86ddbd7f00012fa580ea1c9edb33d9e5982eef71b38e0283ad2659fa61352095
noarch	golang-docs-1.26.2-2.el10_2.alma.1.noarch.rpm	a7b9810b608f99d1d4e8dc8771e6e1493f6f39113e88f56ae83bd92548afe904
noarch	golang-src-1.26.2-2.el10_2.alma.1.noarch.rpm	dbf8e7996f83be39afa1954de0ab45d661a96b356a3e406a1960cd6be572a7bb
noarch	golang-misc-1.26.2-2.el10_2.alma.1.noarch.rpm	ff930bc6ddd8d4469f1e7d1cab514142b71eff36da84ce419045251ce79e3e17
ppc64le	golang-bin-1.26.2-2.el10_2.alma.1.ppc64le.rpm	045936d0375af67cb8c234e59e4988221cd325d7e4cbf3498436bcce5acc8692
ppc64le	go-toolset-1.26.2-2.el10_2.alma.1.ppc64le.rpm	9bf073ea86521ba79bc7347dbcdfbcab29a10b5dcf14d77a495fa4312180cdfe
ppc64le	golang-race-1.26.2-2.el10_2.alma.1.ppc64le.rpm	af37500a222169a92b59fe9ccd49bfb0c2b5af3e0b7612e8bf7c07652c90030e
ppc64le	golang-1.26.2-2.el10_2.alma.1.ppc64le.rpm	d201699226d5a49efe4c5952556f51e9546d748fe9198f8b54bc834633168f95
s390x	golang-1.26.2-2.el10_2.alma.1.s390x.rpm	2ac8d0725813d5561ff8888509da10bccd045ad274f89750213cdd73a7036282
s390x	golang-race-1.26.2-2.el10_2.alma.1.s390x.rpm	48e2dad9f2aa2acf062baa67bd417d702863c28b8fcdf42183b66751570bb1bd
s390x	go-toolset-1.26.2-2.el10_2.alma.1.s390x.rpm	aaae45c676045e299bd952d780f757a034fe5e0f9bf4b8021f46642a4b3de6e4
s390x	golang-bin-1.26.2-2.el10_2.alma.1.s390x.rpm	b8cefd17c695683067598044b26f4ddf3941759cda40415b1cd35f5fa901b0ba
x86_64	go-toolset-1.26.2-2.el10_2.alma.1.x86_64.rpm	2d9c76d3f400e0b41d1e4ede07350c95dcde53f5c01617b0a9ed1d5938cd626b
x86_64	golang-1.26.2-2.el10_2.alma.1.x86_64.rpm	4c4539f8f8d59c0a9b956e54459e9d1108d2a6d8a21ec3b9b21b4b86a174703d
x86_64	golang-race-1.26.2-2.el10_2.alma.1.x86_64.rpm	d17377ec284e3ce76604023d4c8e3f39a68353d35eb1adf5b7853ee3c0d5c50f
x86_64	golang-bin-1.26.2-2.el10_2.alma.1.x86_64.rpm	f5011855264dbc96a853bb65dbd751834cd91fea68ab46da517aeca25492af7d
x86_64_v2	golang-1.26.2-2.el10_2.alma.1.x86_64_v2.rpm	1648b8a2c452870407d028633164d23ab3f4956551b3f696905b5fef0afc6e84
x86_64_v2	go-toolset-1.26.2-2.el10_2.alma.1.x86_64_v2.rpm	98bae162c67febcdea78c164ae65fcbabe2437904912f1b4b29da626391fc0f0
x86_64_v2	golang-bin-1.26.2-2.el10_2.alma.1.x86_64_v2.rpm	a54309bb44b5ac8d87b6b9d56f3cb31869a62ac4916f64858c8de2e0bbcf6513
x86_64_v2	golang-race-1.26.2-2.el10_2.alma.1.x86_64_v2.rpm	cde319bc17ce168a360070c7a52be767bde15e709b7b4991514268c88de49925

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.