Vulnerability Scan Report for registry.suse.com/bci/golang:1.18-19.18
Go 1.21 development container based on the SLE Base Container Image.
Last scanned on: June 10, 2025 17:26

Go 1.21 development container based on the SLE Base Container Image.
Last scanned on: June 10, 2025 17:26
Package Name | Severity | Status | Description | Reference links | |
---|---|---|---|---|---|
openssh-fips | MEDIUM | fixed |
Security update for openssh Vulnerability ID: SUSE-SU-2025:1576-1 Installed Version: 8.4p1-150300.3.15.4 Fixed Version: 8.4p1-150300.3.49.1 This update for openssh fixes the following issues: - Security issues fixed: * CVE-2025-32728: Fixed a logic error in DisableForwarding option (bsc#1241012) - Other bugs fixed: * Allow KEX hashes greater than 256 bits (bsc#1241045) * Fixed hostname being left out of the audit output (bsc#1228634) * Fixed failures with very large MOTDs (bsc#1232533) |
||
openssl-1_1 | HIGH | fixed |
Security update for openssl-1_1 Vulnerability ID: SUSE-SU-2023:0311-1 Installed Version: 1.1.1l-150400.7.16.1 Fixed Version: 1.1.1l-150400.7.22.1 This update for openssl-1_1 fixes the following issues: - CVE-2023-0286: Fixed X.400 address type confusion in X.509 GENERAL_NAME_cmp for x400Address (bsc#1207533). - CVE-2023-0215: Fixed use-after-free following BIO_new_NDEF() (bsc#1207536). - CVE-2022-4450: Fixed double free after calling PEM_read_bio_ex() (bsc#1207538). - CVE-2022-4304: Fixed timing Oracle in RSA Decryption (bsc#1207534). |
||
openssl-1_1 | HIGH | fixed |
Security update for openssl-1_1 Vulnerability ID: SUSE-SU-2024:2089-1 Installed Version: 1.1.1l-150400.7.16.1 Fixed Version: 1.1.1l-150400.7.69.1 This update for openssl-1_1 fixes the following issues: - CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers. (bsc#1225551) |
||
openssl-1_1 | MEDIUM | fixed |
Security update for openssl-1_1 Vulnerability ID: SUSE-SU-2023:1745-1 Installed Version: 1.1.1l-150400.7.16.1 Fixed Version: 1.1.1l-150400.7.31.2 This update for openssl-1_1 fixes the following issues: - CVE-2023-0464: Fixed excessive Resource Usage Verifying X.509 Policy Constraints (bsc#1209624). |
||
openssl-1_1 | MEDIUM | fixed |
Security update for openssl-1_1 Vulnerability ID: SUSE-SU-2023:1911-1 Installed Version: 1.1.1l-150400.7.16.1 Fixed Version: 1.1.1l-150400.7.34.1 This update for openssl-1_1 fixes the following issues: - CVE-2023-0465: Invalid certificate policies in leaf certificates were silently ignored (bsc#1209878). - CVE-2023-0466: Certificate policy check were not enabled (bsc#1209873). |