projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4ed85ea) | patch
golang: Update to 1.20.5
authorJeffery To <jeffery.to@gmail.com>
Mon, 12 Jun 2023 04:04:53 +0000 (12:04 +0800)
committerJeffery To <jeffery.to@gmail.com>
Mon, 12 Jun 2023 11:59:11 +0000 (19:59 +0800)
commitef41089c4b8c8a7c5298193af6ca181e736e24db
treeeec96c525cba885f79acb83cbf7af2d14e6d1db5tree | snapshot
parent4ed85ea2479953571322614da70ce4795f38c464commit | diff
golang: Update to 1.20.5

Includes fixes for:

* CVE-2023-29402: cmd/go: cgo code injection
* CVE-2023-29403: runtime: unexpected behavior of setuid/setgid binaries
* CVE-2023-29404: cmd/go: improper sanitization of LDFLAGS
* CVE-2023-29405: cmd/go: improper sanitization of LDFLAGS

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 471ef14774caffc31dbe82333332cac3121e38e6)
lang/golang/golang/Makefile diff | blob | history
Mirror of packages feed