Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
packages/lang/golang
History
Jeffery To fe3c49fe07
golang: Update to 1.16.5 
1.16.1 included fixes for:

* CVE-2021-27918 - encoding/xml: infinite loop when using
  xml.NewTokenDecoder with a custom TokenReader
* CVE-2021-27919 - archive/zip: can panic when calling Reader.Open

1.16.4 included fixes for:

* CVE-2021-31525 - net/http: ReadRequest can stack overflow due to
  recursion with very large headers

1.16.5 includes fixes for:

* CVE-2021-33195 - net: Lookup functions may return invalid host names
* CVE-2021-33196 - archive/zip: malformed archive may cause panic or
  memory exhaustion
* CVE-2021-33197 - net/http/httputil: ReverseProxy forwards Connection
  headers if first one is empty

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2021-06-11 16:26:56 +08:00
..
golang golang: Update to 1.16.5 2021-06-11 16:26:56 +08:00
golang-build.sh golang: Move package scripts into golang-build.sh 2020-10-06 16:34:40 +08:00
golang-compiler.mk golang: Quote variables passed to the shell 2020-10-06 16:34:40 +08:00
golang-host-build.mk golang: Add golang-host-build.mk 2020-10-06 16:34:41 +08:00
golang-package.mk golang: Add option to enable Spectre mitigations 2020-10-06 16:34:41 +08:00
golang-values.mk golang: Update to 1.16 2021-02-22 17:01:56 +08:00