projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b3869e1) | patch
golang: Update to 1.17.7, refresh patch
authorJeffery To <jeffery.to@gmail.com>
Mon, 14 Feb 2022 19:31:36 +0000 (03:31 +0800)
committerRosen Penev <rosenp@gmail.com>
Tue, 15 Feb 2022 01:17:07 +0000 (17:17 -0800)
commit69c53fcb6ce58a23c51cb9c1a403f5843a565f44
tree8e3e94714366783a95932bfb5aa9b87450ec8d55tree | snapshot
parentb3869e1e46640c629e6a3c22b09b5e9b9f2efc6ccommit | diff
golang: Update to 1.17.7, refresh patch

This includes fixes for:

* CVE-2022-23772: math/big: Rat.SetString may consume large amount of
  RAM and crash

* CVE-2022-23806: crypto/elliptic: IsOnCurve returns true for invalid
  field elements

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
lang/golang/golang/Makefile diff | blob | history
lang/golang/golang/patches/001-cmd-link-use-gold-on-ARM-ARM64-only-if-gold-is-available.patch diff | blob | history
Mirror of packages feed