Security update for kubo (moderate)

openSUSE Security Update: Security update for kubo Announcement ID: openSUSE-SU-2025:0288-1 Rating: moderate References: #1241776 Cross-References: CVE-2025-22872 CVSS scores: CVE-2025-22872 (SUSE): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This update for kubo fixes the following issues: 0.35.0 Opt-in HTTP Retrieval client Dedicated Reprovider.Strategy for MFS Experimental support for MFS as a FUSE mount point Grid view in WebUI Enhanced DAG-Shaping Controls Datastore Metrics Now Opt-In Improved performance of data onboarding Optimized, dedicated queue for providing fresh CIDs New Provider configuration options Deprecated ipfs stats provider New Bitswap configuration options Bitswap.Libp2pEnabled Bitswap.ServerEnabled Internal.Bitswap.ProviderSearchMaxResults New Routing configuration options Routing.IgnoreProviders Routing.DelegatedRouters New Pebble database format config New environment variables Improved Log Output Setting New Repo Lock Optional Wait Updatedgolang.org/x/netto 0.40.0 (boo#1241776, CVE-2025-22872) Update to 0.34.1 – for details see https://github.com/ipfs/kubo/releases/tag/v0.34.1 Dependency updates Update to 0.34.0 – for details see https://github.com/ipfs/kubo/releases/tag/v0.34.0 AutoTLS now enabled by default for nodes with…Read More