[opensuse-commit] commit go1.14 for openSUSE:Factory

User for buildservice source handling Sun, 15 Nov 2020 06:23:03 -0800

Hello community,

here is the log from the commit of package go1.14 for openSUSE:Factory checked 
in at 2020-11-15 15:21:48
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/go1.14 (Old)
 and      /work/SRC/openSUSE:Factory/.go1.14.new.24930 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "go1.14"

Sun Nov 15 15:21:48 2020 rev:13 rq:848228 version:1.14.12

Changes:
--------
--- /work/SRC/openSUSE:Factory/go1.14/go1.14.changes    2020-11-09 
13:58:48.411781501 +0100
+++ /work/SRC/openSUSE:Factory/.go1.14.new.24930/go1.14.changes 2020-11-15 
15:22:23.275194344 +0100
@@ -1,0 +2,14 @@
+Thu Nov 12 21:10:05 UTC 2020 - Jeff Kowalczyk <[email protected]>
+
+- go1.14.12 (released 2020-11-12) includes security fixes to the
+  cmd/go and math/big packages.
+  CVE-2020-28362 CVE-2020-28367 CVE-2020-28366
+  Refs boo#1164903 go1.14 release tracking
+  * boo#1178750 CVE-2020-28362
+  * go#42553 math/big: panic during recursive division of very large numbers
+  * boo#1178752 CVE-2020-28367
+  * go#42560 cmd/go: arbitrary code can be injected into cgo generated files
+  * boo#1178753 CVE-2020-28366
+  * go#42557 cmd/go: improper validation of cgo flags can lead to remote code 
execution at build time
+
+-------------------------------------------------------------------

Old:
----
  go1.14.11.src.tar.gz

New:
----
  go1.14.12.src.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ go1.14.spec ++++++
--- /var/tmp/diff_new_pack.T2WazU/_old  2020-11-15 15:22:24.695195864 +0100
+++ /var/tmp/diff_new_pack.T2WazU/_new  2020-11-15 15:22:24.699195868 +0100
@@ -135,7 +135,7 @@
 %endif
 
 Name:           go1.14
-Version:        1.14.11
+Version:        1.14.12
 Release:        0
 Summary:        A compiled, garbage-collected, concurrent programming language
 License:        BSD-3-Clause

++++++ go1.14.11.src.tar.gz -> go1.14.12.src.tar.gz ++++++
/work/SRC/openSUSE:Factory/go1.14/go1.14.11.src.tar.gz 
/work/SRC/openSUSE:Factory/.go1.14.new.24930/go1.14.12.src.tar.gz differ: char 
142, line 1
_______________________________________________
openSUSE Commits mailing list -- [email protected]
To unsubscribe, email [email protected]
List Netiquette: https://en.opensuse.org/openSUSE:Mailing_list_netiquette
List Archives: 
https://lists.opensuse.org/archives/list/[email protected]

[opensuse-commit] commit go1.14 for openSUSE:Factory

Reply via email to