go1.26-openssl (SUSE:Linux Enterprise Server for SAP Applications 15 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server for SAP Applications 15 SP5 package go1.26-openssl, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (15)
CVE-2026-27143 — CVSS 9.8 (critical): Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow…
CVE-2026-27140 — CVSS 8.8 (high): SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to…
CVE-2026-33810 — CVSS 8.2 (high): When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs…
CVE-2026-25679 — CVSS 7.5 (high): url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-27137 — CVSS 7.5 (high): When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local…
CVE-2026-32280 — CVSS 7.5 (high): During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed…
CVE-2026-32281 — CVSS 7.5 (high): Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of…
CVE-2026-32283 — CVSS 7.5 (high): If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock…
CVE-2026-27144 — CVSS 7.1 (high): The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from…
CVE-2026-32282 — CVSS 6.4 (medium): On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target…
CVE-2026-27142 — CVSS 6.1 (medium): Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an…
CVE-2026-32289 — CVSS 6.1 (medium): Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when…
CVE-2026-27138 — CVSS 5.9 (medium): Certificate verification can panic when a certificate in the chain has an empty DNS name and another certificate in the chain has excluded…
CVE-2026-32288 — CVSS 5.5 (medium): tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse…
CVE-2026-27139 — CVSS 2.5 (low): On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file…