FEDORA-EPEL-2019-330b323bb6 — security update for golang

golang-1.13-1.el7

FEDORA-EPEL-2019-330b323bb6 created by jcajka 3 months ago for Fedora EPEL 7

stable

Rebase to go1.13
Fix for CVE-2019-9512, CVE-2019-9514, CVE-2019-14809

This update has been submitted for testing by jcajka.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update has been pushed to testing.

3 months ago

This update can be pushed to stable now if the maintainer wishes

2 months ago

This update has been submitted for stable by bodhi.

2 months ago

This update has been pushed to stable.

2 months ago

Please login to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

Builds

golang-1.13-1.el7

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

3 months ago

in testing

3 months ago

in stable

2 months ago

BZ#1735645 CVE-2019-9512 HTTP/2: flood using PING frames results in unbounded memory growth

BZ#1735744 CVE-2019-9514 HTTP/2: flood using HEADERS frames results in unbounded memory growth

BZ#1741815 CVE-2019-9512 golang: HTTP/2: flood using PING frames results in unbounded memory growth [epel-all]

BZ#1741826 CVE-2019-9514 golang: HTTP/2: flood using HEADERS frames results in unbounded memory growth [epel-all]

BZ#1743129 CVE-2019-14809 golang: malformed hosts in URLs leads to authorization bypass

BZ#1743130 CVE-2019-14809 golang: malformed hosts in URLs leads to authorization bypass [epel-all]

golang-1.13-1.el7

Automated Test Results