a22b4baf17
- go1.20.5 (released 2023-06-06) includes four security fixes to the cmd/go and runtime packages, as well as bug fixes to the compiler, the go command, the runtime, and the crypto/rsa, net, and os packages. Refs boo#1206346 go1.20 release tracking CVE-2023-29402 CVE-2023-29403 CVE-2023-29404 CVE-2023-29405 * go#60516 go#60167 boo#1212073 security: fix CVE-2023-29402 cmd/go: cgo code injection * go#60518 go#60272 boo#1212074 security: fix CVE-2023-29403 runtime: unexpected behavior of setuid/setgid binaries * go#60512 go#60305 boo#1212075 security: fix CVE-2023-29404 cmd/go: improper sanitization of LDFLAGS * go#60514 go#60306 boo#1212076 security: fix CVE-2023-29405 cmd/go: improper sanitization of LDFLAGS * go#58927 crypto/rsa: 4096 bit keys are not generated with BoringCrypto * go#59975 cmd/compile: multiple memories live at block start * go#60001 cmd/go: missing checksums for dependencies of go get arguments and tests of external dependencies * go#60217 os: Read of a device driver fails only with Go 1.20 * go#60458 cmd/go: document GOROOT/bin/go PATH entry for go test and go generate OBS-URL: https://build.opensuse.org/request/show/1091158 OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/go1.20?expand=0&rev=21 |
||
---|---|---|
_constraints | ||
_service | ||
.gitattributes | ||
.gitignore | ||
dont-force-gold-on-arm64.patch | ||
gcc-go.patch | ||
go1.20.5.src.tar.gz | ||
go1.20.changes | ||
go1.20.spec | ||
go-rpmlintrc | ||
go.gdbinit | ||
llvm-41cb504b7c4b18ac15830107431a0c1eec73a6b2.tar.xz | ||
llvm-74c2d4f6024c8f160871a2baa928d0b42415f183.tar.xz | ||
README.SUSE |
# Go Programming Language OBS: https://build.opensuse.org/project/show/devel:languages:go Maintainer: Jeff Kowalczyk Wiki: http://en.opensuse.org/Go http://en.opensuse.org/openSUSE:Packaging_Go