SUSE Package Hub - SUSE-PackageHub-16.0-671

Update Info

SUSE-PackageHub-16.0-671

Security update for google-cloud-sap-agent

Type: security

Severity: important

Issued: 2026-05-04

Description:

This update for google-cloud-sap-agent fixes the following issue:

- CVE-2026-34986: github.com/go-jose/go-jose/v4: processing of JWE object with empty `encrypted_key` field but key
  wrapping algorithm set can lead to a denial of service (bsc#1262936).

References

CVE: CVE-2026-34986
Bugzilla: 1262936 VUL-0: CVE-2026-34986: google-cloud-sap-agent: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of service

Packages

google-cloud-sap-agent-3.12-160000.2.1