also, new vuln exclusions

Signed-off-by: Xavier Coulon <xcoulon@redhat.com>

Author: xcoulon

.govulncheck.yaml

@@ -4,4 +4,23 @@ ignored-vulnerabilities:
   # Fixed in: net/url@go1.24.8
   - id: GO-2025-4010
     info: https://pkg.go.dev/vuln/GO-2025-4010
-    silence-until: 2026-01-03
+    silence-until: 2026-01-03
+  # Quadratic complexity when checking name constraints in crypto/x509
+  # Found in: crypto/x509@go1.23.12
+  # Fixed in: crypto/x509@go1.24.9
+  - id: GO-2025-4007
+    info: https://pkg.go.dev/vuln/GO-2025-4007
+    silence-until: 2026-01-10
+  # Quadratic complexity when parsing some invalid inputs in encoding/pem
+  # Found in: encoding/pem@go1.23.12
+  # Fixed in: encoding/pem@go1.24.8
+  - id: GO-2025-4009
+    info: https://pkg.go.dev/vuln/GO-2025-4009
+    silence-until: 2026-01-10
+  # Parsing DER payload can cause memory exhaustion in encoding/asn1
+  # Found in: encoding/asn1@go1.23.12
+  # Fixed in: encoding/asn1@go1.24.8
+  - id: GO-2025-4011
+    info: https://pkg.go.dev/vuln/GO-2025-4011
+    silence-until: 2026-01-10
+