commit go1.19 for openSUSE:Factory

Source-Sync Thu, 08 Jun 2023 12:41:53 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package go1.19 for openSUSE:Factory checked 
in at 2023-06-08 21:41:39
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/go1.19 (Old)
 and      /work/SRC/openSUSE:Factory/.go1.19.new.15902 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "go1.19"

Thu Jun  8 21:41:39 2023 rev:16 rq:1091159 version:1.19.10

Changes:
--------
--- /work/SRC/openSUSE:Factory/go1.19/go1.19.changes    2023-05-04 
17:10:05.412194812 +0200
+++ /work/SRC/openSUSE:Factory/.go1.19.new.15902/go1.19.changes 2023-06-08 
21:41:41.837685239 +0200
@@ -1,0 +2,16 @@
+Tue Jun  6 19:13:57 UTC 2023 - Jeff Kowalczyk <jkowalc...@suse.com>
+
+- go1.19.10 (released 2023-06-06) includes four security fixes to
+  the cmd/go and runtime packages, as well as bug fixes to the
+  compiler, the go command, and the runtime.
+  Refs boo#1200441 go1.19 release tracking
+  CVE-2023-29402 CVE-2023-29403 CVE-2023-29404 CVE-2023-29405
+  * go#60515 go#60167 boo#1212073 security: fix CVE-2023-29402 cmd/go: cgo 
code injection
+  * go#60517 go#60272 boo#1212074 security: fix CVE-2023-29403 runtime: 
unexpected behavior of setuid/setgid binaries
+  * go#60511 go#60305 boo#1212075 security: fix CVE-2023-29404 cmd/go: 
improper sanitization of LDFLAGS
+  * go#60513 go#60306 boo#1212076 security: fix CVE-2023-29405 cmd/go: 
improper sanitization of LDFLAGS
+  * go#59974 cmd/compile: multiple memories live at block start
+  * go#60000 cmd/go: missing checksums for dependencies of go get arguments 
and tests of external dependencies
+  * go#60457 cmd/go: document GOROOT/bin/go PATH entry for go test and go 
generate
+
+-------------------------------------------------------------------

Old:
----
  go1.19.9.src.tar.gz

New:
----
  go1.19.10.src.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ go1.19.spec ++++++
--- /var/tmp/diff_new_pack.qugnPW/_old  2023-06-08 21:41:42.801690920 +0200
+++ /var/tmp/diff_new_pack.qugnPW/_new  2023-06-08 21:41:42.805690944 +0200
@@ -134,7 +134,7 @@
 %endif
 
 Name:           go1.19
-Version:        1.19.9
+Version:        1.19.10
 Release:        0
 Summary:        A compiled, garbage-collected, concurrent programming language
 License:        BSD-3-Clause

++++++ go1.19.9.src.tar.gz -> go1.19.10.src.tar.gz ++++++
/work/SRC/openSUSE:Factory/go1.19/go1.19.9.src.tar.gz 
/work/SRC/openSUSE:Factory/.go1.19.new.15902/go1.19.10.src.tar.gz differ: char 
13, line 1

commit go1.19 for openSUSE:Factory

Reply via email to