NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
abd008b29f
kumquat-buildroot/package/go/go.hash
Christian Stewart 280719ba7f package/go: security bump to 1.17.1 
The fix for CVE-2021-33196 can be bypassed by crafted inputs. As a result, the
NewReader and OpenReader functions in archive/zip can still cause a panic or an
unrecoverable fatal error when reading an archive that claims to contain a large
number of files, regardless of its actual size.

This is CVE-2021-39293.

https://golang.org/doc/devel/release.html#go1.16.minor

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2021-09-10 15:17:04 +02:00

4 lines
206 B
Plaintext
Raw Blame History

# From https://golang.org/dl/
sha256 49dc08339770acd5613312db8c141eaf61779995577b89d93b541ef83067e5b1 go1.17.1.src.tar.gz
sha256 2d36597f7117c38b006835ae7f537487207d8ec407aa9d9980794b2030cbc067 LICENSE
Reference in New Issue View Git Blame Copy Permalink