Accepting request 1066110 from home:jfkw:branches:devel:languages:go

- go1.19.6 (released 2023-02-14) includes security fixes to the crypto/tls, mime/multipart, net/http, and path/filepath packages, as well as bug fixes to the go command, the linker, the runtime, and the crypto/x509, net/http, and time packages. Refs boo#1200441 go1.19 release tracking CVE-2022-41722 CVE-2022-41723 CVE-2022-41724 CVE-2022-41725 * go#57275 boo#1208269 security: fix CVE-2022-41722 * go#58355 boo#1208270 security: fix CVE-2022-41723 * go#58358 boo#1208271 security: fix CVE-2022-41724 * go#58362 boo#1208272 security: fix CVE-2022-41725 * go#56154 net/http: bad handling of HEAD requests with a body * go#57635 crypto/x509: TestBoringAllowCert failures * go#57812 runtime: performance regression due to bad instruction used in morestack_noctxt for ppc64 in CL 425396 * go#58118 time: update zoneinfo_abbrs on Windows * go#58223 cmd/link: .go.buildinfo is gc'ed by --gc-sections * go#58449 cmd/go/internal/modfetch: TestCodeRepo/gopkg.in_natefinch_lumberjack.v2/latest failing OBS-URL: https://build.opensuse.org/request/show/1066110 OBS-URL: https://build.opensuse.org/package/show/devel:languages:go/go1.19?expand=0&rev=20
2023-02-16 07:45:26 +00:00 · 2023-02-16 07:45:26 +00:00 · 70712ea9d1
commit 70712ea9d1
parent 062a83ad98
4 changed files with 25 additions and 5 deletions
--- a/go1.19.5.src.tar.gz
+++ b/go1.19.5.src.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:8e486e8e85a281fc5ce3f0bedc5b9d2dbf6276d7db0b25d3ec034f313da0375f
-size 26545858
--- a/go1.19.6.src.tar.gz
+++ b/go1.19.6.src.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d7f0013f82e6d7f862cc6cb5c8cdb48eef5f2e239b35baa97e2f1a7466043767
+size 26549360
--- a/go1.19.changes
+++ b/go1.19.changes
@ -1,3 +1,23 @@
+-------------------------------------------------------------------
+Tue Feb 14 18:28:32 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
+
+- go1.19.6 (released 2023-02-14) includes security fixes to the
+  crypto/tls, mime/multipart, net/http, and path/filepath packages,
+  as well as bug fixes to the go command, the linker, the runtime,
+  and the crypto/x509, net/http, and time packages.
+  Refs boo#1200441 go1.19 release tracking
+  CVE-2022-41722 CVE-2022-41723 CVE-2022-41724 CVE-2022-41725
+  * go#57275 boo#1208269 security: fix CVE-2022-41722
+  * go#58355 boo#1208270 security: fix CVE-2022-41723
+  * go#58358 boo#1208271 security: fix CVE-2022-41724
+  * go#58362 boo#1208272 security: fix CVE-2022-41725
+  * go#56154 net/http: bad handling of HEAD requests with a body
+  * go#57635 crypto/x509: TestBoringAllowCert failures
+  * go#57812 runtime: performance regression due to bad instruction used in morestack_noctxt for ppc64 in CL 425396
+  * go#58118 time: update zoneinfo_abbrs on Windows
+  * go#58223 cmd/link: .go.buildinfo is gc'ed by --gc-sections
+  * go#58449 cmd/go/internal/modfetch: TestCodeRepo/gopkg.in_natefinch_lumberjack.v2/latest failing
+
 -------------------------------------------------------------------
 Tue Jan 10 22:13:49 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>

--- a/go1.19.spec
+++ b/go1.19.spec
@ -136,7 +136,7 @@
 %endif

 Name:           go1.19
-Version:        1.19.5
+Version:        1.19.6
 Release:        0
 Summary:        A compiled, garbage-collected, concurrent programming language
 License:        BSD-3-Clause
@ -223,8 +223,8 @@ Go runtime race detector libraries. Install this package if you wish to use the
 %else
 %setup -q -T -b 101 -n llvm-%{tsan_commit}
 %endif
-
 %endif
+
 # go
 %setup -q -n go
 %patch7 -p1