golang: Update to 1.17.9
authorJeffery To <jeffery.to@gmail.com>
Mon, 25 Apr 2022 05:52:56 +0000 (13:52 +0800)
committerJeffery To <jeffery.to@gmail.com>
Mon, 25 Apr 2022 05:52:56 +0000 (13:52 +0800)
Includes fixes for:
* CVE-2022-24675 - encoding/pem: stack overflow
* CVE-2022-28327 - crypto/elliptic: generic P-256 panic when scalar has
  too many leading zeroes

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
lang/golang/golang/Makefile

index f3d1b1e76bcd10001c0cb27631337fad2e02f3d3..fda7a36b2d36dfcf3c2c3eaedc0cb2ffc3c75dcb 100644 (file)
@@ -8,7 +8,7 @@
 include $(TOPDIR)/rules.mk
 
 GO_VERSION_MAJOR_MINOR:=1.17
-GO_VERSION_PATCH:=8
+GO_VERSION_PATCH:=9
 
 PKG_NAME:=golang
 PKG_VERSION:=$(GO_VERSION_MAJOR_MINOR)$(if $(GO_VERSION_PATCH),.$(GO_VERSION_PATCH))
@@ -20,7 +20,7 @@ GO_SOURCE_URLS:=https://dl.google.com/go/ \
 
 PKG_SOURCE:=go$(PKG_VERSION).src.tar.gz
 PKG_SOURCE_URL:=$(GO_SOURCE_URLS)
-PKG_HASH:=2effcd898140da79a061f3784ca4f8d8b13d811fb2abe9dad2404442dabbdf7a
+PKG_HASH:=763ad4bafb80a9204458c5fa2b8e7327fa971aee454252c0e362c11236156813
 
 PKG_MAINTAINER:=Jeffery To <jeffery.to@gmail.com>
 PKG_LICENSE:=BSD-3-Clause