rpm/go1.19
SHA256
1
0
Fork 0
forked from pool/go1.19
Code Pull Requests Activity

Accepting request 1079525 from devel:languages:go

Browse Source 
- Use gcc13 compiler for Tumbleweed.
- Format one recent changelog entry for better visibility of CVEs (forwarded request 1079524 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1079525
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/go1.19?expand=0&rev=13
This commit is contained in:
Dominique Leuenberger 2023-04-15 21:08:34 +00:00 committed by Git OBS Bridge
commit cad80fba4f
2 changed files with 10 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
go1.19.changes
View File

@ -1,3 +1,8 @@
-------------------------------------------------------------------
Thu Apr 13 04:58:20 UTC 2023 - Martin Liška <mliska@suse.cz>
- Use gcc13 compiler for Tumbleweed.
-------------------------------------------------------------------
Tue Apr 4 20:42:31 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
@ -7,10 +12,10 @@ Tue Apr 4 20:42:31 UTC 2023 - Jeff Kowalczyk <jkowalczyk@suse.com>
runtime, and the time package.
Refs boo#1200441 go1.19 release tracking
CVE-2023-24534 CVE-2023-24536 CVE-2023-24537 CVE-2023-24538
* go#59267 go#58975 boo#1210127 net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
* go#59269 go#59153 boo#1210128 net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
* go#59273 go#59180 boo#1210129 go/parser: infinite loop in parsing (CVE-2023-24537)
* go#59271 go#59234 boo#1210130 html/template: backticks not treated as string delimiters (CVE-2023-24538)
* go#59267 go#58975 boo#1210127 security: fix CVE-2023-24534 net/http, net/textproto: denial of service from excessive memory allocation
* go#59269 go#59153 boo#1210128 security: fix CVE-2023-24536 net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption
* go#59273 go#59180 boo#1210129 security: fix CVE-2023-24537 go/parser: infinite loop in parsing
* go#59271 go#59234 boo#1210130 security: fix CVE-2023-24538 html/template: backticks not treated as string delimiters
* go#58937 cmd/go: timeout on darwin-amd64-race builder
* go#58939 runtime/pprof: TestLabelSystemstack due to sample with no location
* go#58941 internal/testpty: fails on some Linux machines due to incorrect error handling

2
go1.19.spec
View File

@ -30,7 +30,7 @@
# Used to bootstrap go toolchain using specific version of gcc-go
%if 0%{?suse_version} > 1500
# openSUSE Tumbleweed
%define gcc_go_version 12
%define gcc_go_version 13
%else
%define gcc_go_version 11
%endif