NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
a73f23c816
kumquat-buildroot/package/go
History
Peter Korsgaard 442fefbacf package/go: add Debian backport of upstream security fix 
Fixes the following security vulnerability:

- CVE-2019-16276: Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP
  Request Smuggling.
  https://github.com/golang/go/issues/34540

Upstream has not provided a go 1.11.x release with a fix for this, so
instead include the Debian backport of the upstream security fix from:

https://sources.debian.org/src/golang-1.11/1.11.6-1+deb10u2/debian/patches/0007-Fix-CVE-2019-16276.patch/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2019-10-02 17:44:41 +02:00
..
0001-build.go-explicit-option-for-crosscompilation.patch
0002-Fix-CVE-2019-16276.patch package/go: add Debian backport of upstream security fix 2019-10-02 17:44:41 +02:00
Config.in.host
go.hash package/go: security bump to version 1.11.13 2019-09-02 15:48:34 +02:00
go.mk package/go: security bump to version 1.11.13 2019-09-02 15:48:34 +02:00