Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
packages/lang/golang
History
Stanislav Petrashov 0ad7a2fe18
golang: update to v1.19.2 
Includes fixes for security vulnerabilities:
 * [CVE-2022-27664](https://github.com/advisories/GHSA-69cg-p879-7622) net/http: handle server errors after sending GOAWAY
 * [CVE-2022-32190](https://github.com/golang/go/issues/54385) net/url: JoinPath does not strip relative path components in all circumstances
 * [CVE-2022-2879](https://github.com/golang/go/issues/54853) archive/tar: unbounded memory consumption when reading headers
 * [CVE-2022-2880](https://github.com/golang/go/issues/54663) net/http/httputil: ReverseProxy should not forward unparseable query parameters
 * [CVE-2022-41715](https://github.com/golang/go/issues/55949) regexp/syntax: limit memory used by parsing regexps

Addresses the build failure:
* https://github.com/openwrt/packages/pull/19613

Signed-off-by: Stanislav Petrashov <s@petrashov.ru>
2022-11-14 20:23:44 +01:00
..
golang golang: update to v1.19.2 2022-11-14 20:23:44 +01:00
golang-build.sh golang: Update to 1.18, update patch 2022-03-28 19:42:59 -07:00
golang-compiler.mk golang: enable verbose output 2022-05-27 02:39:52 -04:00
golang-host-build.mk golang: Fix conditionals not stripped 2022-04-15 15:18:12 -07:00
golang-package.mk golang: Fix conditionals not stripped 2022-04-15 15:18:12 -07:00
golang-values.mk golang: Update to 1.18, update patch 2022-03-28 19:42:59 -07:00