We received this from the Go announce list
We plan to issue Go 1.26.2 and Go 1.25.9 during US business hours on Tuesday, April 7.
These minor releases include PRIVATE security fixes to the standard library and the toolchain, covering the following CVEs:
CVE-2026-32282
CVE-2026-32289
CVE-2026-33810
CVE-2026-27144
CVE-2026-27143
CVE-2026-32288
CVE-2026-32283
CVE-2026-27140
Following our security policy, this is the pre-announcement of those releases.
We plan to issue 1.73.4 on 8th April to address this.
How to use GitHub
- Please use the 👍 reaction to show that you are affected by the same issue.
- Please don't comment if you have no relevant information to add. It's just extra noise for everyone subscribed to this issue.
- Subscribe to receive notifications on status change and new comments.
We received this from the Go announce list
We plan to issue Go 1.26.2 and Go 1.25.9 during US business hours on Tuesday, April 7.
These minor releases include PRIVATE security fixes to the standard library and the toolchain, covering the following CVEs:
Following our security policy, this is the pre-announcement of those releases.
We plan to issue 1.73.4 on 8th April to address this.
How to use GitHub