Bump Go to 1.25.7 / 1.24.13 #21254
Description
What would you like to be added?
Go 1.25.7 and 1.24.13 were released yesterday; they include fixes for CVEs: CVE-2025-61732 and CVE-2025-68121. According to our Dependency management documentation, we want to stay on the latest patch version. This means updating our stable branches to 1.24.13 and main to 1.25.7.
Progress track:
- etcd
-
main: go v1.25.7 - Bump go version to 1.25.7 #21256 -
release-3.6: go v1.24.13 -[release-3.6] Bump Go to 1.24.13 #21257 -
release-3.5: go v1.24.13 - [release-3.5] Bump go version to 1.24.13 #21258 -
release-3.4: go v1.24.13 - [release-3.4] Bump go version to 1.24.13 #21266 -
CHANGELOG- Update CHANGELOG entries for releases v3.4.41, v3.5.27, and v3.6.8 #21309
-
- bbolt
-
main: go v1.24.13 - Bump go to 1.21.13 bbolt#1145 -
release-1.4: v1.24.13 - [release-1.4] Bump go to 1.21.13 bbolt#1146 -
release-1.3: v1.24.13 - [release-1.3] Bump Go to 1.24.13 bbolt#1147
-
- raft
-
main: go v1.24.13 - Bump go to 1.24.13 raft#383 -
release-3.6: go v1.24.13 - [release-3.6] Bump to go v1.24.13 raft#384
-
-
etcd-io/gofailmaster: go v1.24.13 - Bump go to 1.24.13 gofail#141 -
etcd-io/augermain: go v1.25.7 - Bump go to 1.25.7 auger#428 -
etcd-io/etcd-operator: go v1.25.7 - Bump go to 1.25.7 etcd-operator#279 -
etcd-io/protodoc: go v1.24.13 - Bump go to 1.24.13 protodoc#30
Why is this needed?
To keep our Go version up to date and to address CVEs: CVE-2025-61732 and CVE-2025-68121.