summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Michael Stapelberg [Thu, 8 Feb 2018 09:00:00 +0000 (10:00 +0100)]
Reproducible BUILD_PATH_PREFIX_MAP
Make builds reproducible by honoring BUILD_PATH_PREFIX_MAP
Upstream has rejected the patch in this form and promised to implement an
alternative they are happy with instead. That hasn't happened yet though.
Bug: https://github.com/golang/go/issues/22491, https://github.com/golang/go/issues/16860
Forwarded: https://golang.org/cl/73291 (rejected upstream though)
Gbp-Pq: Name 0001-Reproducible-BUILD_PATH_PREFIX_MAP.patch
Shengjing Zhu [Sun, 24 Jan 2021 19:15:38 +0000 (19:15 +0000)]
golang-1.11 (1.11.6-1+deb10u4) buster-security; urgency=high
* Team upload.
[ Dr. Tobias Quathamer ]
* cryptobyte: fix panic due to malformed ASN.1 inputs on 32-bit archs
https://github.com/golang/go/issues/36837
CVE-2020-7919
* net/http: Expect 100-continue panics in httputil.ReverseProxy
https://github.com/golang/go/issues/34902
CVE-2020-15586
* encoding/binary: ReadUvarint and ReadVarint can read an unlimited
number of bytes from invalid inputs
https://github.com/golang/go/issues/40618
CVE-2020-16845
[ Shengjing Zhu ]
* crypto/elliptic: incorrect operations on the P-224 curve
https://github.com/golang/go/issues/43786
CVE-2021-3114
[dgit import unpatched golang-1.11 1.11.6-1+deb10u4]
Shengjing Zhu [Sun, 24 Jan 2021 19:15:38 +0000 (19:15 +0000)]
Import golang-1.11_1.11.6-1+deb10u4.debian.tar.xz
[dgit import tarball golang-1.11 1.11.6-1+deb10u4 golang-1.11_1.11.6-1+deb10u4.debian.tar.xz]
Michael Hudson-Doyle [Sun, 17 Mar 2019 20:37:17 +0000 (20:37 +0000)]
Import golang-1.11_1.11.6.orig.tar.gz
[dgit import orig golang-1.11_1.11.6.orig.tar.gz]
projects / golang-1.11.git / log