Movatterモバイル変換

Skip to Main Content

Why Go
- Case Studies
  Common problems companies solve with Go
- Use Cases
  Stories about how and why companies use Go
- Security
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  A complete introduction to building software with Go
- Standard library
  Reference documentation for Go's standard library
- Release Notes
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  Videos from prior events
- Meetups
  Meet other local Go developers
- Conferences
  Learn and network with Go developers from around the world
- Go blog
  The Go project's official blog.
- Go project
  Get help and stay informed from Go
- Get connected

Vulnerability Report: GO-2025-3938

CVE-2025-58437, GHSA-j6xf-jwrj-v5qp
Affects: github.com/coder/coder, github.com/coder/coder/v2
Published: Sep 17, 2025
Unreviewed

Coder vulnerable to privilege escalation could lead to a cross workspace compromise in github.com/coder/coder

For detailed information about this vulnerability, visithttps://github.com/coder/coder/security/advisories/GHSA-j6xf-jwrj-v5qp orhttps://nvd.nist.gov/vuln/detail/CVE-2025-58437.

Affected Modules

Path
Go Versions
github.com/coder/coder
all versions, no known fixed
github.com/coder/coder/v2
from v2.22.0 before v2.24.4, from v2.25.0 before v2.25.2

Aliases

References

Feedback

This report isunreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.

See anything missing or incorrect? Suggest an edit to this report.

go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic.Learn more.

[8]ページ先頭

©2009-2025 Movatter.jp