diff --git a/go1.17.8.src.tar.gz b/go1.17.8.src.tar.gz deleted file mode 100644 index b16abf1..0000000 --- a/go1.17.8.src.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:2effcd898140da79a061f3784ca4f8d8b13d811fb2abe9dad2404442dabbdf7a -size 22199282 diff --git a/go1.17.9.src.tar.gz b/go1.17.9.src.tar.gz new file mode 100644 index 0000000..1b3b4a6 --- /dev/null +++ b/go1.17.9.src.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:763ad4bafb80a9204458c5fa2b8e7327fa971aee454252c0e362c11236156813 +size 22200358 diff --git a/go1.17.changes b/go1.17.changes index 08727e9..e24788a 100644 --- a/go1.17.changes +++ b/go1.17.changes @@ -1,3 +1,20 @@ +------------------------------------------------------------------- +Tue Apr 12 17:42:46 UTC 2022 - Jeff Kowalczyk + +- go1.17.9 (released 2022-04-12) includes security fixes to the + crypto/elliptic and encoding/pem packages, as well as bug fixes + to the linker and runtime. + Refs boo#1190649 go1.17 release tracking + CVE-2022-24675 CVE-2022-28327 + * boo#1198423 go#51853 CVE-2022-24675 + * go#52036 encoding/pem: stack overflow + * boo#1198424 go#52075 CVE-2022-28327 + * go#52076 crypto/elliptic: generic P-256 panic when scalar has too many leading zeroes + * go#51736 plugin: tls handshake panic: unreachable method called. linker bug? + * go#51696 runtime: some tests fails on Windows with CGO_ENABLED=0 + * go#51458 runtime: finalizer call has wrong frame size + * go#50611 internal/poll: deadlock in Read on arm64 when an FD is closed + ------------------------------------------------------------------- Thu Apr 7 23:57:47 UTC 2022 - Jeff Kowalczyk diff --git a/go1.17.spec b/go1.17.spec index d903642..1e02a0e 100644 --- a/go1.17.spec +++ b/go1.17.spec @@ -145,7 +145,7 @@ %endif Name: go1.17 -Version: 1.17.8 +Version: 1.17.9 Release: 0 Summary: A compiled, garbage-collected, concurrent programming language License: BSD-3-Clause