Security update for govulncheck-vulndb

Announcement ID:	SUSE-SU-2025:0770-1
Release Date:	2025-03-03T13:41:36Z
Rating:	moderate
References:	jsc#PED-11136
Affected Products:	openSUSE Leap 15.6 SUSE Linux Enterprise Desktop 15 SP6 SUSE Linux Enterprise Real Time 15 SP6 SUSE Linux Enterprise Server 15 SP6 SUSE Linux Enterprise Server for SAP Applications 15 SP6 SUSE Package Hub 15 15-SP6

An update that contains one feature can now be installed.

Description:

This update for govulncheck-vulndb fixes the following issues:

• Update to version 0.0.20250226T025151 2025-02-26T02:51:51Z. (jsc#PED-11136)

• GO-2025-3487 CVE-2025-22869

• GO-2025-3488 CVE-2025-22868

• Update to version 0.0.20250218T203201 2025-02-18T20:32:01Z. (jsc#PED-11136)

• GO-2024-3321 CVE-2024-45337 GHSA-v778-237x-gjrc

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Package Hub 15 15-SP6
  zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-770=1
• openSUSE Leap 15.6
  zypper in -t patch openSUSE-SLE-15.6-2025-770=1

Package List:

• SUSE Package Hub 15 15-SP6 (noarch)
  • govulncheck-vulndb-0.0.20250226T025151-150000.1.35.1
• openSUSE Leap 15.6 (noarch)
  • govulncheck-vulndb-0.0.20250226T025151-150000.1.35.1

References:

• https://jira.suse.com/browse/PED-11136