Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
packages/lang/golang
History
Jeffery To 8a03e65655 golang: Update to 1.17.12 
Includes fixes for:

* CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding
  header
* CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions
* CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip
* CVE-2022-30630: io/fs: stack exhaustion in Glob
* CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read
* CVE-2022-30632: path/filepath: stack exhaustion in Glob
* CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal
* CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode
* CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit
  X-Forwarded-For not working

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2022-07-20 02:38:16 -07:00
..
golang golang: Update to 1.17.12 2022-07-20 02:38:16 -07:00
golang-build.sh golang: Move package scripts into golang-build.sh 2020-10-06 16:34:40 +08:00
golang-compiler.mk golang: Update to 1.17 2021-08-29 17:53:41 -07:00
golang-host-build.mk golang: Add golang-host-build.mk 2020-10-06 16:34:41 +08:00
golang-package.mk golang: Add option to enable Spectre mitigations 2020-10-06 16:34:41 +08:00
golang-values.mk golang: Update to 1.17 2021-08-29 17:53:41 -07:00