godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-21 08:51:30 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
1ca629c77ea46d86b1855ea76f2fe33f472fc31f
buildroot/package/go
History
Peter Korsgaard 442fefbacf package/go: add Debian backport of upstream security fix 
Fixes the following security vulnerability:

- CVE-2019-16276: Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP
  Request Smuggling.
  https://github.com/golang/go/issues/34540

Upstream has not provided a go 1.11.x release with a fix for this, so
instead include the Debian backport of the upstream security fix from:

https://sources.debian.org/src/golang-1.11/1.11.6-1+deb10u2/debian/patches/0007-Fix-CVE-2019-16276.patch/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-02 17:44:41 +02:00
..
0001-build.go-explicit-option-for-crosscompilation.patch
0002-Fix-CVE-2019-16276.patch
package/go: add Debian backport of upstream security fix
2019-10-02 17:44:41 +02:00
Config.in.host
package: hide golang packages for toolchains with binutils bug 20006
2018-11-29 21:22:45 +01:00
go.hash
package/go: security bump to version 1.11.13
2019-09-02 15:48:34 +02:00
go.mk
package/go: security bump to version 1.11.13
2019-09-02 15:48:34 +02:00