FEDORA-EPEL-2016-1117d3c7f6

security update in Fedora EPEL 6 for golang

Status: stable 3 years ago

Rebase to 1.7.1. Security fix for CVE-2015-8618, CVE-2016-5386, CVE-2016-3959


bz1271709 include patch from upstream fix

Comments 6

This update has been submitted for testing by jcajka.

This update has obsoleted golang-1.5.1-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.

jcajka edited this update.

This update has been submitted for stable by jcajka.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago
modified 3 years ago

Related Bugs 8

00 #1271709 Races in httptest in go1.5.1
00 #1293448 CVE-2015-8618 golang: Carry propagation in Int.Exp Montgomery code in math/big library
00 #1293449 CVE-2015-8618 golang: Carry propagation in Int.Exp Montgomery code in math/big library [epel-6]
00 #1324343 CVE-2016-3959 golang: infinite loop in several big integer routines
00 #1324345 CVE-2016-3959 golang: infinite loop in several big integer routines [epel-6]
00 #1353798 CVE-2016-5386 Go: sets environmental variable based on user supplied Proxy request header
00 #1357601 CVE-2016-5386 golang: Go: sets environmental variable based on user supplied Proxy request header [epel-6]
00 #1376555 GoLang 1.5 has security issues and is EOL - please provide GoLand 1.7.1 which is new stable

Automated Test Results