pool/go1.20
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 1101873 from devel:languages:go

Browse Source 
- go1.20.7 (released 2023-08-01) includes a security fix to the
  crypto/tls package, as well as bug fixes to the assembler and the
  compiler.
  Refs boo#1206346 go1.20 release tracking
  CVE-2023-29409
  * go#61580 go#61460 boo#1213880 security: fix CVE-2023-29409 crypto/tls: restrict RSA keys in certificates to <= 8192 bits
  * go#61320 cmd/compile: ppc64le: sign extension issue in go 1.21rc2
  * go#61449 net: TestInterfaceArrivalAndDepartureZoneCache is broken on linux-arm64
  * go#61471 cmd/compile: failed to make Go on riscv64 CPU with numa (forwarded request 1101871 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1101873
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/go1.20?expand=0&rev=9
This commit is contained in:
Dominique Leuenberger 2023-08-03 15:27:11 +00:00 committed by Git OBS Bridge
commit 17809daadd
4 changed files with 18 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
go1.20.6.src.tar.gz
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:62ee5bc6fb55b8bae8f705e0cb8df86d6453626b4ecf93279e2867092e0b7f70
size 26194491

3
go1.20.7.src.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:2c5ee9c9ec1e733b0dbbc2bdfed3f62306e51d8172bf38f4f4e542b27520f597
size 26192928

15
go1.20.changes
View File

@ -1,3 +1,16 @@
-------------------------------------------------------------------
Tue Aug 1 20:35:02 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
- go1.20.7 (released 2023-08-01) includes a security fix to the
crypto/tls package, as well as bug fixes to the assembler and the
compiler.
Refs boo#1206346 go1.20 release tracking
CVE-2023-29409
* go#61580 go#61460 boo#1213880 security: fix CVE-2023-29409 crypto/tls: restrict RSA keys in certificates to <= 8192 bits
* go#61320 cmd/compile: ppc64le: sign extension issue in go 1.21rc2
* go#61449 net: TestInterfaceArrivalAndDepartureZoneCache is broken on linux-arm64
* go#61471 cmd/compile: failed to make Go on riscv64 CPU with numa
-------------------------------------------------------------------
Tue Jul 11 17:50:52 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
@ -5,7 +18,7 @@ Tue Jul 11 17:50:52 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
net/http package, as well as bug fixes to the compiler, cgo, the
cover tool, the go command, the runtime, and the crypto/ecdsa,
go/build, go/printer, net/mail, and text/template packages.
Refs boo#1206346 go1.20 release tracking.
Refs boo#1206346 go1.20 release tracking
CVE-2023-29406
* go#61076 go#60374 boo#1213229 security: fix CVE-2023-29406 net/http: insufficient sanitization of Host header
* go#60352 cmd/go: go mod tidy introduces ambiguous imports in pruned modules

2
go1.20.spec
View File

@ -126,7 +126,7 @@
%endif
Name: go1.20
Version: 1.20.6
Version: 1.20.7
Release: 0
Summary: A compiled, garbage-collected, concurrent programming language
License: BSD-3-Clause