stable

golang-1.18.9-1.el7

FEDORA-EPEL-2023-970698785b created by dwd a year ago for Fedora EPEL 7

Update to golang-1.18.9 using the same patches as on EL8, including security fixes for CVE-2022-32189, CVE-2022-27664, CVE-2022-27664, CVE-2022-32190, CVE-2022-41715, CVE-2022-2880, CVE-2022-2879, CVE-2022-41720, and CVE-2022-41717

This update has been submitted for testing by dwd.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
approved
a year ago
BZ#2113814 CVE-2022-32189 golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service
0
0
BZ#2113816 CVE-2022-32189 golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service [epel-all]
0
0
BZ#2124668 CVE-2022-32190 golang: net/url: JoinPath does not strip relative path components in all circumstances
0
0
BZ#2124669 CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY
0
0
BZ#2126630 CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY [epel-all]
0
0
BZ#2126657 CVE-2022-32190 golang: net/url: JoinPath does not strip relative path components in all circumstances [epel-all]
0
0
BZ#2132867 CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers
0
0
BZ#2132868 CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters
0
0
BZ#2132872 CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps
0
0
BZ#2132874 CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps [epel-all]
0
0
BZ#2132876 CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters [epel-all]
0
0
BZ#2132878 CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers [epel-all]
0
0
BZ#2161271 CVE-2022-41720 golang: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows
0
0
BZ#2161274 CVE-2022-41717 golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests
0
0
BZ#2161431 CVE-2022-41720 golang: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows [epel-all]
0
0
BZ#2163038 CVE-2022-41717 golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests [epel-all]
0
0

Automated Test Results