Hello community, here is the log from the commit of package go1.12 for openSUSE:Factory checked in at 2020-02-03 11:11:43 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/go1.12 (Old) and /work/SRC/openSUSE:Factory/.go1.12.new.26092 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "go1.12" Mon Feb 3 11:11:43 2020 rev:16 rq:768367 version:1.12.16 Changes: -------- --- /work/SRC/openSUSE:Factory/go1.12/go1.12.changes 2020-01-13 22:16:49.202387307 +0100 +++ /work/SRC/openSUSE:Factory/.go1.12.new.26092/go1.12.changes 2020-02-03 11:11:54.705802277 +0100 @@ -1,0 +2,8 @@ +Wed Jan 29 00:14:49 UTC 2020 - Jeff Kowalczyk <[email protected]> + +- go1.12.16 (released 2020/01/28) includes two security fixes to + the crypto/x509 package. + * go#36839 crypto/x509, x/crypto/cryptobyte: panic in certificate parsing + * go#36836 crypto/x509: certificate validation bypass on Windows 10 + +------------------------------------------------------------------- Old: ---- go1.12.15.src.tar.gz New: ---- go1.12.16.src.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ go1.12.spec ++++++ --- /var/tmp/diff_new_pack.zndEpi/_old 2020-02-03 11:11:55.833802847 +0100 +++ /var/tmp/diff_new_pack.zndEpi/_new 2020-02-03 11:11:55.837802849 +0100 @@ -118,7 +118,7 @@ %endif Name: go1.12 -Version: 1.12.15 +Version: 1.12.16 Release: 0 Summary: A compiled, garbage-collected, concurrent programming language License: BSD-3-Clause ++++++ go1.12.15.src.tar.gz -> go1.12.16.src.tar.gz ++++++ /work/SRC/openSUSE:Factory/go1.12/go1.12.15.src.tar.gz /work/SRC/openSUSE:Factory/.go1.12.new.26092/go1.12.16.src.tar.gz differ: char 142, line 1
