commit go1.22 for openSUSE:Factory

Source-Sync Fri, 06 Sep 2024 08:18:27 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package go1.22 for openSUSE:Factory checked 
in at 2024-09-06 17:17:36
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/go1.22 (Old)
 and      /work/SRC/openSUSE:Factory/.go1.22.new.10096 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "go1.22"

Fri Sep  6 17:17:36 2024 rev:13 rq:1199062 version:1.22.7

Changes:
--------
--- /work/SRC/openSUSE:Factory/go1.22/go1.22.changes    2024-08-08 
10:57:32.441504551 +0200
+++ /work/SRC/openSUSE:Factory/.go1.22.new.10096/go1.22.changes 2024-09-06 
17:17:40.565725212 +0200
@@ -1,0 +2,15 @@
+Thu Sep  5 15:20:28 UTC 2024 - Jeff Kowalczyk <jkowalc...@suse.com>
+
+- go1.22.7 (released 2024-09-05) includes security fixes to the
+  encoding/gob, go/build/constraint, and go/parser packages, as
+  well as bug fixes to the fix command and the runtime.
+  Refs boo#1218424 go1.22 release tracking
+  CVE-2024-34155 CVE-2024-34156 CVE-2024-34158
+  - go#69142 go#69138 boo#1230252 security: fix CVE-2024-34155 go/parser: 
stack exhaustion in all Parse* functions (CVE-2024-34155)
+  - go#69144 go#69139 boo#1230253 security: fix CVE-2024-34156 encoding/gob: 
stack exhaustion in Decoder.Decode (CVE-2024-34156)
+  - go#69148 go#69141 boo#1230254 security: fix CVE-2024-34158 
go/build/constraint: stack exhaustion in Parse (CVE-2024-34158)
+  - go#68811 os: TestChtimes failures
+  - go#68825 cmd/fix: fails to run on modules whose go directive value is in 
"1.n.m" format introduced in Go 1.21.0
+  - go#68972 cmd/cgo: aix c-archive corrupting stack
+
+-------------------------------------------------------------------

Old:
----
  go1.22.6.src.tar.gz

New:
----
  go1.22.7.src.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ go1.22.spec ++++++
--- /var/tmp/diff_new_pack.64ZF6R/_old  2024-09-06 17:17:41.185750974 +0200
+++ /var/tmp/diff_new_pack.64ZF6R/_new  2024-09-06 17:17:41.189751140 +0200
@@ -122,7 +122,7 @@
 %endif
 
 Name:           go1.22
-Version:        1.22.6
+Version:        1.22.7
 Release:        0
 Summary:        A compiled, garbage-collected, concurrent programming language
 License:        BSD-3-Clause

++++++ go1.22.6.src.tar.gz -> go1.22.7.src.tar.gz ++++++
/work/SRC/openSUSE:Factory/go1.22/go1.22.6.src.tar.gz 
/work/SRC/openSUSE:Factory/.go1.22.new.10096/go1.22.7.src.tar.gz differ: char 
13, line 1

commit go1.22 for openSUSE:Factory

Reply via email to