Accepting request 1101871 from home:jfkw:branches:devel:languages:go
- go1.20.7 (released 2023-08-01) includes a security fix to the crypto/tls package, as well as bug fixes to the assembler and the compiler. Refs boo#1206346 go1.20 release tracking CVE-2023-29409 * go#61580 go#61460 boo#1213880 security: fix CVE-2023-29409 crypto/tls: restrict RSA keys in certificates to <= 8192 bits * go#61320 cmd/compile: ppc64le: sign extension issue in go 1.21rc2 * go#61449 net: TestInterfaceArrivalAndDepartureZoneCache is broken on linux-arm64 * go#61471 cmd/compile: failed to make Go on riscv64 CPU with numa OBS-URL: https://build.opensuse.org/request/show/1101871 OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/go1.20?expand=0&rev=26
This commit is contained in:
parent
9b9fb04236
commit
f7d7d8327b
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:62ee5bc6fb55b8bae8f705e0cb8df86d6453626b4ecf93279e2867092e0b7f70
|
||||
size 26194491
|
3
go1.20.7.src.tar.gz
Normal file
3
go1.20.7.src.tar.gz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:2c5ee9c9ec1e733b0dbbc2bdfed3f62306e51d8172bf38f4f4e542b27520f597
|
||||
size 26192928
|
@ -1,3 +1,16 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Aug 1 20:35:02 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
|
||||
|
||||
- go1.20.7 (released 2023-08-01) includes a security fix to the
|
||||
crypto/tls package, as well as bug fixes to the assembler and the
|
||||
compiler.
|
||||
Refs boo#1206346 go1.20 release tracking
|
||||
CVE-2023-29409
|
||||
* go#61580 go#61460 boo#1213880 security: fix CVE-2023-29409 crypto/tls: restrict RSA keys in certificates to <= 8192 bits
|
||||
* go#61320 cmd/compile: ppc64le: sign extension issue in go 1.21rc2
|
||||
* go#61449 net: TestInterfaceArrivalAndDepartureZoneCache is broken on linux-arm64
|
||||
* go#61471 cmd/compile: failed to make Go on riscv64 CPU with numa
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Jul 11 17:50:52 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
|
||||
|
||||
@ -5,7 +18,7 @@ Tue Jul 11 17:50:52 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
|
||||
net/http package, as well as bug fixes to the compiler, cgo, the
|
||||
cover tool, the go command, the runtime, and the crypto/ecdsa,
|
||||
go/build, go/printer, net/mail, and text/template packages.
|
||||
Refs boo#1206346 go1.20 release tracking.
|
||||
Refs boo#1206346 go1.20 release tracking
|
||||
CVE-2023-29406
|
||||
* go#61076 go#60374 boo#1213229 security: fix CVE-2023-29406 net/http: insufficient sanitization of Host header
|
||||
* go#60352 cmd/go: go mod tidy introduces ambiguous imports in pruned modules
|
||||
|
@ -126,7 +126,7 @@
|
||||
%endif
|
||||
|
||||
Name: go1.20
|
||||
Version: 1.20.6
|
||||
Version: 1.20.7
|
||||
Release: 0
|
||||
Summary: A compiled, garbage-collected, concurrent programming language
|
||||
License: BSD-3-Clause
|
||||
|
Loading…
Reference in New Issue
Block a user