rpm/go1.22
SHA256
1
0
Fork 0
forked from pool/go1.22
Code Pull Requests Activity

Accepting request 1199062 from devel:languages:go

Browse Source 
- go1.22.7 (released 2024-09-05) includes security fixes to the
  encoding/gob, go/build/constraint, and go/parser packages, as
  well as bug fixes to the fix command and the runtime.
  Refs boo#1218424 go1.22 release tracking
  CVE-2024-34155 CVE-2024-34156 CVE-2024-34158
  - go#69142 go#69138 boo#1230252 security: fix CVE-2024-34155 go/parser: stack exhaustion in all Parse* functions (CVE-2024-34155)
  - go#69144 go#69139 boo#1230253 security: fix CVE-2024-34156 encoding/gob: stack exhaustion in Decoder.Decode (CVE-2024-34156)
  - go#69148 go#69141 boo#1230254 security: fix CVE-2024-34158 go/build/constraint: stack exhaustion in Parse (CVE-2024-34158)
  - go#68811 os: TestChtimes failures
  - go#68825 cmd/fix: fails to run on modules whose go directive value is in "1.n.m" format introduced in Go 1.21.0
  - go#68972 cmd/cgo: aix c-archive corrupting stack (forwarded request 1199061 from jfkw)

OBS-URL: https://build.opensuse.org/request/show/1199062
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/go1.22?expand=0&rev=13
This commit is contained in:
Ana Guerrero 2024-09-06 15:17:36 +00:00 committed by Git OBS Bridge
commit 33a10cdbea
4 changed files with 19 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
go1.22.6.src.tar.gz (Stored with Git LFS)
View File

Binary file not shown.

BIN
go1.22.7.src.tar.gz (Stored with Git LFS) Normal file
View File

Binary file not shown.

15
go1.22.changes
View File

@ -1,3 +1,18 @@
-------------------------------------------------------------------
Thu Sep 5 15:20:28 UTC 2024 - Jeff Kowalczyk <jkowalczyk@suse.com>
- go1.22.7 (released 2024-09-05) includes security fixes to the
encoding/gob, go/build/constraint, and go/parser packages, as
well as bug fixes to the fix command and the runtime.
Refs boo#1218424 go1.22 release tracking
CVE-2024-34155 CVE-2024-34156 CVE-2024-34158
- go#69142 go#69138 boo#1230252 security: fix CVE-2024-34155 go/parser: stack exhaustion in all Parse* functions (CVE-2024-34155)
- go#69144 go#69139 boo#1230253 security: fix CVE-2024-34156 encoding/gob: stack exhaustion in Decoder.Decode (CVE-2024-34156)
- go#69148 go#69141 boo#1230254 security: fix CVE-2024-34158 go/build/constraint: stack exhaustion in Parse (CVE-2024-34158)
- go#68811 os: TestChtimes failures
- go#68825 cmd/fix: fails to run on modules whose go directive value is in "1.n.m" format introduced in Go 1.21.0
- go#68972 cmd/cgo: aix c-archive corrupting stack
-------------------------------------------------------------------
Tue Aug 6 17:39:11 UTC 2024 - Jeff Kowalczyk <jkowalczyk@suse.com>

2
go1.22.spec
View File

@ -122,7 +122,7 @@
%endif
Name: go1.22
Version: 1.22.6
Version: 1.22.7
Release: 0
Summary: A compiled, garbage-collected, concurrent programming language
License: BSD-3-Clause