Ubuntu
golang-1.21 package

Change logs for golang-1.21 source package in Jammy

Jammy (22.04)
Change log

golang-1.21 (1.21.1-1~ubuntu22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: bypass directives restrictions
    - debian/patches/CVE-2023-39323.patch: cmd/compile: use absolute file
      name in isCgo check
    - CVE-2023-39323
  * SECURITY UPDATE: denial of service
    - debian/patches/CVE-2023-39325_44487.patch: http2: limit maximum
      handler goroutines to MaxConcurrentStreams
    - CVE-2023-39325
    - CVE-2023-44487
  * SECURITY UPDATE: out-of-bound read
    - debian/patches/CVE-2023-39326.patch: net/http: limit chunked data
      overhead
    - CVE-2023-39326
  * SECURITY UPDATE: bypass secure protocol
    - debian/patches/CVE-2023-45285.patch: error out if the requested repo
      does not support a secure protocol
    - CVE-2023-45285

 -- Nishit Majithia <email address hidden>  Mon, 08 Jan 2024 11:54:05 +0530

golang-1.21 (1.21.1-1~ubuntu22.04.1) jammy; urgency=medium

  * Backport to Jammy (LP: #2040269)

 -- Shengjing Zhu <email address hidden>  Wed, 25 Oct 2023 16:18:08 +0800

Ubuntugolang-1.21 package

Change logs for golang-1.21 source package in Jammy

Ubuntu
golang-1.21 package