Vulnerability Report: GO-2026-4924

  • CVE-2025-68153, GHSA-245v-p8fj-vwm2
  • Affects: github.com/juju/juju
  • Published: Apr 06, 2026

Juju has a resource poisoning vulnerability in github.com/juju/juju. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. (If this is causing false-positive reports from vulnerability scanners, please suggest an edit to the report.) The additional affected modules and versions are: github.com/juju/juju from v2.9 before v2.9.56, from v3.6 before v3.6.19.

For detailed information about this vulnerability, visit https://github.com/juju/juju/security/advisories/GHSA-245v-p8fj-vwm2.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.