Accepted golang-1.21 1.21.4-1~bpo12+1 (source) into stable-backports
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 12 Nov 2023 21:14:55 -0700
Source: golang-1.21
Architecture: source
Version: 1.21.4-1~bpo12+1
Distribution: bookworm-backports
Urgency: medium
Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org>
Changed-By: Anthony Fok <foka@debian.org>
Changes:
golang-1.21 (1.21.4-1~bpo12+1) bookworm-backports; urgency=medium
.
* Rebuild for bookworm-backports.
.
golang-1.21 (1.21.4-1) unstable; urgency=medium
.
* Team upload
* New upstream version 1.21.4
+ CVE-2023-45283: path/filepath: recognize \??\ as a Root Local Device
path prefix.
+ CVE-2023-45284: path/filepath: recognize device names with trailing
spaces and superscripts.
.
golang-1.21 (1.21.3-1) unstable; urgency=medium
.
* Team upload
* New upstream version 1.21.3
+ CVE-2023-44487/CVE-2023-39325: net/http: rapid stream resets can cause
excessive work
.
golang-1.21 (1.21.2-1) unstable; urgency=medium
.
* Team upload
* New upstream version 1.21.2
+ CVE-2023-39323: cmd/go: line directives allows arbitrary execution during
build
.
golang-1.21 (1.21.1-1) unstable; urgency=medium
.
* Team upload
* New upstream version 1.21.1
+ CVE-2023-39320: cmd/go: go.mod toolchain directive allows arbitrary
execution
+ CVE-2023-39318: html/template: improper handling of HTML-like comments
within script contexts
+ CVE-2023-39319: html/template: improper handling of special tags within
script contexts
+ CVE-2023-39321/CVE-2023-39322: crypto/tls: panic when processing
post-handshake message on QUIC connections
Checksums-Sha1:
fa07f6dbd73b93055b14b656a3d037cfce3025a6 2955 golang-1.21_1.21.4-1~bpo12+1.dsc
9eb1bb2054c0ed2c46a63d91f7bc4d7ed702c34c 36700 golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
5d71017190e43c4b6047ed4cb6338bb397e30818 7114 golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo
Checksums-Sha256:
baf5827d274537f0764b293c7870f2763d965b2881d3ee3d7f9a3a93fff3435f 2955 golang-1.21_1.21.4-1~bpo12+1.dsc
a154547671eb74762c416a006886b30d84b9b04c71bf9b067b9918eb64c6f3b5 36700 golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
32311e3f7d1eea5c3cb1ada9ec3750aa342f1a74605f4667162ece29a3928692 7114 golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo
Files:
e76a7bdbc68d03253ce7f0c14b681057 2955 golang optional golang-1.21_1.21.4-1~bpo12+1.dsc
a87c936be3c44979f755881ac8b8eda4 36700 golang optional golang-1.21_1.21.4-1~bpo12+1.debian.tar.xz
f7dce1d38707ccbab616418eaba4cfbb 7114 golang optional golang-1.21_1.21.4-1~bpo12+1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJEBAEBCAAuFiEEFCQhsZrUqVmW+VBy6iUAtBLFms8FAmVRzikQHGZva2FAZGVi
aWFuLm9yZwAKCRDqJQC0EsWaz0IoD/9VJm9h7Iwme89D0B8VmgLcv4+bj9hIFl7V
fraMQsK++MC5wgeKzTrGFRfjKBqh/2tBRCUqtoTfk12ymA19+Q69E/2NdomXLDC4
yri0pBMobWh6QG/vKp3GTsCuAq40T45ydaoled8cPJOhymeO8GvDkaBYRP2ZVwva
dsG8eDyxReUDj+El5ylrSGuyV+S2e6W5vF5HHWC45LLuarFf+g4H7/cNep8V+LzL
XB5GuMvjExm1xWHanzTec5fFaPmTak+8GmfDK3CzYlD4etGihaQwbO6GFpveAW9a
tmjS6Y/ThC9hp3V0Kh3xUoyWQGCAcQrajZS8tj11CveT3su3N5f2FYfqMPNl48RH
67VPFqp/8zbc6mu4spW5RFlO85ssMKO6Xicn031MNvOMIFyf7Hrv/E2NafdPjH2k
wNVfNjYDYsmvJs1j/I8Ga4UlzTOthAl3ECVM0Ggy3CnCveHJic8fLv42ydHlnYi8
c3nFp5haej1wArxAZCyum1tMemiXm8v/KMD2XQpcCZs82D5Fb45aIyp3fsWbGa0Y
DSBo5j0uMhxfZWWpRIgr4aym+9NHUhwGkY5k2WiWUPbHYiYSdAIEf+DZFNgdpEH6
7GbzQsk81QZ3lOCrYlO50JBvv1x2RrRQ9lMs9UMQNcqnZikDCQKxye7aDz7qLsE0
r6QTx1qReg==
=oBxw
-----END PGP SIGNATURE-----
Reply to: