[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted golang-1.21 1.21.4-1~bpo12+1 (source) into stable-backports

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 12 Nov 2023 21:14:55 -0700
Source: golang-1.21
Architecture: source
Version: 1.21.4-1~bpo12+1
Distribution: bookworm-backports
Urgency: medium
Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org>
Changed-By: Anthony Fok <foka@debian.org>
Changes:
 golang-1.21 (1.21.4-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.
 .
 golang-1.21 (1.21.4-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.21.4
     + CVE-2023-45283: path/filepath: recognize \??\ as a Root Local Device
       path prefix.
     + CVE-2023-45284: path/filepath: recognize device names with trailing
       spaces and superscripts.
 .
 golang-1.21 (1.21.3-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.21.3
     + CVE-2023-44487/CVE-2023-39325: net/http: rapid stream resets can cause
       excessive work
 .
 golang-1.21 (1.21.2-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.21.2
     + CVE-2023-39323: cmd/go: line directives allows arbitrary execution during
       build
 .
 golang-1.21 (1.21.1-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.21.1
     + CVE-2023-39320: cmd/go: go.mod toolchain directive allows arbitrary
       execution
     + CVE-2023-39318: html/template: improper handling of HTML-like comments
       within script contexts
     + CVE-2023-39319: html/template: improper handling of special tags within
       script contexts
     + CVE-2023-39321/CVE-2023-39322: crypto/tls: panic when processing
       post-handshake message on QUIC connections
Checksums-Sha1:
 fa07f6dbd73b93055b14b656a3d037cfce3025a6 2955 golang-1.21_1.21.4-1~bpo12+1.dsc
 9eb1bb2054c0ed2c46a63d91f7bc4d7ed702c34c 36700 golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
 5d71017190e43c4b6047ed4cb6338bb397e30818 7114 golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo
Checksums-Sha256:
 baf5827d274537f0764b293c7870f2763d965b2881d3ee3d7f9a3a93fff3435f 2955 golang-1.21_1.21.4-1~bpo12+1.dsc
 a154547671eb74762c416a006886b30d84b9b04c71bf9b067b9918eb64c6f3b5 36700 golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
 32311e3f7d1eea5c3cb1ada9ec3750aa342f1a74605f4667162ece29a3928692 7114 golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo
Files:
 e76a7bdbc68d03253ce7f0c14b681057 2955 golang optional golang-1.21_1.21.4-1~bpo12+1.dsc
 a87c936be3c44979f755881ac8b8eda4 36700 golang optional golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
 f7dce1d38707ccbab616418eaba4cfbb 7114 golang optional golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=oBxw
-----END PGP SIGNATURE-----
Reply to: