Hey all, This release addresses breakage caused by a security patch included in Go 1.25.2 and 1.24.8, which enforced overly restrictive validation on the parsing of X.509 certificates. We've removed those restrictions while maintaining the security fix that the initial release addressed.
We apologize for any issues this may have caused. Roland Shoemaker, for the Go Security team On Mon, Oct 13, 2025 at 2:25 PM <[email protected]> wrote: > Hello gophers, > > We have just released Go versions 1.25.3 and 1.24.9, minor point releases. > > View the release notes for more information: > https://go.dev/doc/devel/release#go1.25.3 > > You can download binary and source distributions from the Go website: > https://go.dev/dl/ > > To compile from source using a Git clone, update to the release with > git checkout go1.25.3 and build as usual. > > Thanks to everyone who contributed to the releases. > > Cheers, > Dmitri and Michael for the Go team > > -- > You received this message because you are subscribed to the Google Groups > "golang-announce" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion visit > https://groups.google.com/d/msgid/golang-announce/d30875e0.EAAAB6vbKBQAAAAAAAAAA-p9MGAAAYKKSQYAAAAAADE8OwBo7W4u%40mailjet.com > <https://groups.google.com/d/msgid/golang-announce/d30875e0.EAAAB6vbKBQAAAAAAAAAA-p9MGAAAYKKSQYAAAAAADE8OwBo7W4u%40mailjet.com?utm_medium=email&utm_source=footer> > . > -- You received this message because you are subscribed to the Google Groups "golang-nuts" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/d/msgid/golang-nuts/CADAOFNRy60643xfhk-MepUaOvDppEZ9ArvRZ207%3Dv6F9cMp-Yw%40mail.gmail.com.
