projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 43276c6) | patch
golang: Update to 1.17.7, refresh patch
authorJeffery To <jeffery.to@gmail.com>
Mon, 14 Feb 2022 19:31:36 +0000 (03:31 +0800)
committerRosen Penev <rosenp@gmail.com>
Wed, 16 Feb 2022 00:42:24 +0000 (16:42 -0800)
commit4919a791aeb3e5f2d1316dab09ebf4f1454ac242
tree199e93a4cf140f30a7ffeb340d2c01c52f50aab3tree | snapshot
parent43276c6494726ea9f7b5380d8a39a0494f707844commit | diff
golang: Update to 1.17.7, refresh patch

This includes fixes for:

* CVE-2022-23772: math/big: Rat.SetString may consume large amount of
  RAM and crash

* CVE-2022-23806: crypto/elliptic: IsOnCurve returns true for invalid
  field elements

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 69c53fcb6ce58a23c51cb9c1a403f5843a565f44)
lang/golang/golang/Makefile diff | blob | history
lang/golang/golang/patches/001-cmd-link-use-gold-on-ARM-ARM64-only-if-gold-is-available.patch diff | blob | history
Mirror of packages feed