Accepting request 969626 from devel:languages:go
- go1.18.1 (released 2022-04-12) includes security fixes to the crypto/elliptic, crypto/x509, and encoding/pem packages, as well as bug fixes to the compiler, linker, runtime, the go command, vet, and the bytes, crypto/x509, and go/types packages. Refs boo#1193742 go1.18 release tracking CVE-2022-24675 CVE-2022-28327 CVE-2022-27536 * boo#1198423 go#51853 CVE-2022-24675 * go#52037 encoding/pem: stack overflow boo#1198424 go#52075 CVE-2022-28327 * go#52077 crypto/elliptic: generic P-256 panic when scalar has too many leading zeroes * boo#1198427 go#51759 CVE-2022-27536 * go#51763 crypto/x509: Certificate.Verify crash on macOS with Go 1.18 * go#52140 cmd/go: go work use -r panics when given a directory that does not exist * go#52119 go/types, cmd/compile: type set overlapping implementation for interface types might be not correct * go#52032 go/types: spurious diagnostics for untyped shift operands with GoVersion < go1.13 * go#52007 go/types, types2: scope is unset on receivers of instantiated methods * go#51874 cmd/go: Segfault on ppc64le during Go 1.18 build on Alpine Linux * go#51855 cmd/compile: internal compiler error: panic: runtime error: index out of range [0] with length 0 * go#51852 crypto/x509: reject SHA-1 signatures in Verify * go#51847 cmd/compile: cannot import "package" (type parameter bound more than once) * go#51846 cmd/compile: internal compiler error: walkExpr: switch 1 unknown op RECOVER * go#51796 bytes: Trim returns empty slice instead of nil in 1.18 * go#51767 cmd/go: "go test" seems to now require git due to -buildvcs * go#51764 cmd/go: go work use panics when given a file * go#51741 cmd/cgo: pointer to incomplete C type is mangled when passed through interface type and generic type assert * go#51737 plugin: tls handshake panic: unreachable method called. linker bug? * go#51727 cmd/vet, go/types: go vet crash when using self-recursive anonymous types in constraints * go#51697 runtime: some tests fails on Windows with CGO_ENABLED=0 * go#51669 cmd/compile: irgen uses wrong dict param to generate code for getting dict type * go#51665 go/types, types2: gopls crash in recordTypeAndValue (forwarded request 969623 from jfkw) OBS-URL: https://build.opensuse.org/request/show/969626 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/go1.18?expand=0&rev=8
This commit is contained in:
commit
4ee0aaeda3
3
go1.18.1.src.tar.gz
Normal file
3
go1.18.1.src.tar.gz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:efd43e0f1402e083b73a03d444b7b6576bb4c539ac46208b63a916b69aca4088
|
||||
size 22834149
|
@ -1,3 +1,37 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 12 17:42:46 UTC 2022 - Jeff Kowalczyk <jkowalczyk@suse.com>
|
||||
|
||||
- go1.18.1 (released 2022-04-12) includes security fixes to the
|
||||
crypto/elliptic, crypto/x509, and encoding/pem packages, as well
|
||||
as bug fixes to the compiler, linker, runtime, the go command,
|
||||
vet, and the bytes, crypto/x509, and go/types packages.
|
||||
Refs boo#1193742 go1.18 release tracking
|
||||
CVE-2022-24675 CVE-2022-28327 CVE-2022-27536
|
||||
* boo#1198423 go#51853 CVE-2022-24675
|
||||
* go#52037 encoding/pem: stack overflow
|
||||
boo#1198424 go#52075 CVE-2022-28327
|
||||
* go#52077 crypto/elliptic: generic P-256 panic when scalar has too many leading zeroes
|
||||
* boo#1198427 go#51759 CVE-2022-27536
|
||||
* go#51763 crypto/x509: Certificate.Verify crash on macOS with Go 1.18
|
||||
* go#52140 cmd/go: go work use -r panics when given a directory that does not exist
|
||||
* go#52119 go/types, cmd/compile: type set overlapping implementation for interface types might be not correct
|
||||
* go#52032 go/types: spurious diagnostics for untyped shift operands with GoVersion < go1.13
|
||||
* go#52007 go/types, types2: scope is unset on receivers of instantiated methods
|
||||
* go#51874 cmd/go: Segfault on ppc64le during Go 1.18 build on Alpine Linux
|
||||
* go#51855 cmd/compile: internal compiler error: panic: runtime error: index out of range [0] with length 0
|
||||
* go#51852 crypto/x509: reject SHA-1 signatures in Verify
|
||||
* go#51847 cmd/compile: cannot import "package" (type parameter bound more than once)
|
||||
* go#51846 cmd/compile: internal compiler error: walkExpr: switch 1 unknown op RECOVER
|
||||
* go#51796 bytes: Trim returns empty slice instead of nil in 1.18
|
||||
* go#51767 cmd/go: "go test" seems to now require git due to -buildvcs
|
||||
* go#51764 cmd/go: go work use panics when given a file
|
||||
* go#51741 cmd/cgo: pointer to incomplete C type is mangled when passed through interface type and generic type assert
|
||||
* go#51737 plugin: tls handshake panic: unreachable method called. linker bug?
|
||||
* go#51727 cmd/vet, go/types: go vet crash when using self-recursive anonymous types in constraints
|
||||
* go#51697 runtime: some tests fails on Windows with CGO_ENABLED=0
|
||||
* go#51669 cmd/compile: irgen uses wrong dict param to generate code for getting dict type
|
||||
* go#51665 go/types, types2: gopls crash in recordTypeAndValue
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Apr 7 23:57:47 UTC 2022 - Jeff Kowalczyk <jkowalczyk@suse.com>
|
||||
|
||||
|
@ -145,7 +145,7 @@
|
||||
%endif
|
||||
|
||||
Name: go1.18
|
||||
Version: 1.18
|
||||
Version: 1.18.1
|
||||
Release: 0
|
||||
Summary: A compiled, garbage-collected, concurrent programming language
|
||||
License: BSD-3-Clause
|
||||
|
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:38f423db4cc834883f2b52344282fa7a39fbb93650dc62a11fdf0be6409bdad6
|
||||
size 22827832
|
Loading…
Reference in New Issue
Block a user