Your message dated Wed, 06 Mar 2024 07:52:15 +0000
with message-id <[email protected]>
and subject line Bug#1065368: fixed in golang-1.22 1.22.1-1
has caused the Debian Bug report #1065368,
regarding golang-1.22: unsupported obj reloc 62 (R_RISCV_CALL)/8 on riscv64
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1065368: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1065368
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: golang-1.22
Version: 1.22.0-2
Severity: normal
Tags: upstream patch fixed-upstream
User: [email protected]
Usertags: riscv64
X-Debbugs-Cc: [email protected]
Control: forwarded -1 
https://github.com/golang/go/commit/b5a64ba62eafe5dee13562091ca03aef6cac87b6

Dear maintainer,

Thanks for packaging golang 1.22. Unfortunately this version has a small
issue on riscv64 preventing other packages like hugo to be built [1].
Fortunately the issue has already been fixed upstream with a very simple
patch [2]. There is a plan to backport this change to the 1.22 branch
[3].

In the meantime would it be possible to include this patch in the Debian
package? I have verified that it applies cleanly and fixes the problem.
Thanks in advance.

Regards
Aurelien

[1] 
https://buildd.debian.org/status/fetch.php?pkg=hugo&arch=riscv64&ver=0.123.7-1&stamp=1709330897&raw=0
[2] https://github.com/golang/go/commit/b5a64ba62eafe5dee13562091ca03aef6cac87b6
[3] https://github.com/golang/go/issues/66060

--- End Message ---
--- Begin Message ---
Source: golang-1.22
Source-Version: 1.22.1-1
Done: Shengjing Zhu <[email protected]>

We believe that the bug you reported is fixed in the latest version of
golang-1.22, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Shengjing Zhu <[email protected]> (supplier of updated golang-1.22 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 06 Mar 2024 15:09:10 +0800
Source: golang-1.22
Architecture: source
Version: 1.22.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Compiler Team <[email protected]>
Changed-By: Shengjing Zhu <[email protected]>
Closes: 1065368
Changes:
 golang-1.22 (1.22.1-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.22.1
     + CVE-2024-24783: crypto/x509: Verify panics on certificates with an
       unknown public key algorithm
     + CVE-2023-45290: net/http: memory exhaustion in Request.ParseMultipartForm
     + CVE-2023-45289: net/http, net/http/cookiejar: incorrect forwarding of
       sensitive headers and cookies on HTTP redirect
     + CVE-2024-24785: html/template: errors returned from MarshalJSON methods
       may break template escaping
     + CVE-2024-24784: net/mail: comments in display names are incorrectly
       handled
   * Update upstream signing key
   * Backport patch to fix external link on riscv64 (Closes: #1065368)
Checksums-Sha1:
 9c30b1525e8f6620ec597a9ce10d548972794b85 2524 golang-1.22_1.22.1-1.dsc
 81651938663134518593c61c611443f1e8ccf7ee 27548577 
golang-1.22_1.22.1.orig.tar.gz
 242073cdf4c47e6e8649cc12357ce8dece6faefe 833 golang-1.22_1.22.1.orig.tar.gz.asc
 6ac9b9327473588fb137892c5bbc2a1ae41d6a8f 41676 
golang-1.22_1.22.1-1.debian.tar.xz
 619dc8bbd8118e468ff16fbd634a67f01462256c 6545 
golang-1.22_1.22.1-1_amd64.buildinfo
Checksums-Sha256:
 979ceb551226b823a79d0b9d5fbdc5bf5625f2e71f66617478e97ff6b306aebc 2524 
golang-1.22_1.22.1-1.dsc
 79c9b91d7f109515a25fc3ecdaad125d67e6bdb54f6d4d98580f46799caea321 27548577 
golang-1.22_1.22.1.orig.tar.gz
 d217ad270c2dbcd0c952b2033c7b70de03bcac616f5f2134da3a697183902831 833 
golang-1.22_1.22.1.orig.tar.gz.asc
 927a564dafacd30c6c4fb7335f8e61894341491f5ef95deade889ef57b73acd2 41676 
golang-1.22_1.22.1-1.debian.tar.xz
 7a1fb172dab010dd147049ab374da9c0f776a935085e48f8530a9f8ec932b30b 6545 
golang-1.22_1.22.1-1_amd64.buildinfo
Files:
 ad13dda3b2d2a6153decf4f25494ca08 2524 golang optional golang-1.22_1.22.1-1.dsc
 da1a44807b86836323ed475d81ddee8a 27548577 golang optional 
golang-1.22_1.22.1.orig.tar.gz
 c37a54a6892eb537d501cadf6cc5896f 833 golang optional 
golang-1.22_1.22.1.orig.tar.gz.asc
 09c2d2353b4cb93a8c641abb07b4c826 41676 golang optional 
golang-1.22_1.22.1-1.debian.tar.xz
 cc090e32ae080397b606b5e71839aadc 6545 golang optional 
golang-1.22_1.22.1-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEc793ixFTU9Vien7Zh7Iv85yjO70FAmXoHGoACgkQh7Iv85yj
O71i8Qf+Kroz+ymv+HTnhuEDGg+Yq1TNNJCC45ZygKIuraCKwwOQeCXUsJKUkLY6
DFTzftWXagm4kXMKgcz5fhl8XD0lzwljFwSSXhZIvANf/7QeEBzHC2rc22SSDy6X
0bT1F234fX2HUUz83s1u80+EPXH+g6kNh6QQGmPUdC7MQsJ9o4QMRfb04mz14l5a
vxLMlX/sCp1rjovPbXWXDEKu+vchnwUTy5HIyBEvowdHbQeiUNrO0amfKuA9bhF8
hZpADzniqpp5ipHJJOHMEEnelI015zX9WjT8/5nvAnaiXgIZE4sVW+A1pKgk6C8G
7xVY7YYHa4QuGgcV+A1gedOiWxdMFw==
=pDwh
-----END PGP SIGNATURE-----

Attachment: pgpN8QNISXqrp.pgp
Description: PGP signature


--- End Message ---

Reply via email to