[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted golang-1.21 1.21.8-1 (source) into unstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 06 Mar 2024 15:14:10 +0800
Source: golang-1.21
Architecture: source
Version: 1.21.8-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org>
Changed-By: Shengjing Zhu <zhsj@debian.org>
Changes:
 golang-1.21 (1.21.8-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.21.8
     + CVE-2024-24783: crypto/x509: Verify panics on certificates with an
       unknown public key algorithm
     + CVE-2023-45290: net/http: memory exhaustion in Request.ParseMultipartForm
     + CVE-2023-45289: net/http, net/http/cookiejar: incorrect forwarding of
       sensitive headers and cookies on HTTP redirect
     + CVE-2024-24785: html/template: errors returned from MarshalJSON methods
       may break template escaping
     + CVE-2024-24784: net/mail: comments in display names are incorrectly
       handled
   * Update upstream signing key
Checksums-Sha1:
 348511f343ea5c289ba754ccaa528618c4599e57 2553 golang-1.21_1.21.8-1.dsc
 bd869855a84cb605c9c723374b487d41bc12569a 26992984 golang-1.21_1.21.8.orig.tar.gz
 9c621a6de3612841cc68ad497b0042e4f5c2beef 833 golang-1.21_1.21.8.orig.tar.gz.asc
 add3124cc01938ffdd1d03bb5719f8fb7d537489 40664 golang-1.21_1.21.8-1.debian.tar.xz
 5096d4adb9248c4b760c3579434127fbdac149be 6571 golang-1.21_1.21.8-1_amd64.buildinfo
Checksums-Sha256:
 701f595721cc2104f59e7ed02aa5d30ab1cf865202f06456e128d9288cceaf68 2553 golang-1.21_1.21.8-1.dsc
 dc806cf75a87e1414b5b4c3dcb9dd3e9cc98f4cfccec42b7af617d5a658a3c43 26992984 golang-1.21_1.21.8.orig.tar.gz
 97a08b0d9cef4e16002fe34f6f5963e26e2f57d6144138efe68f30a0c64d2f6a 833 golang-1.21_1.21.8.orig.tar.gz.asc
 44cbbfcb6dc5d002ba91c0c2ae0b818ab54f084808ab3bc17eeaa1dc6c697036 40664 golang-1.21_1.21.8-1.debian.tar.xz
 721b484e6b40235f3997488230ccf2ee5f4683ce291fb606d474d935ac8cec37 6571 golang-1.21_1.21.8-1_amd64.buildinfo
Files:
 c9fd796f48a09db65e9b178e27d50f58 2553 golang optional golang-1.21_1.21.8-1.dsc
 02711c04f9fbe4087ab54805458a2a9d 26992984 golang optional golang-1.21_1.21.8.orig.tar.gz
 2e3e349fcc2649a10ef180c63b628e84 833 golang optional golang-1.21_1.21.8.orig.tar.gz.asc
 2e395b169e3cf523102a5dfff09d75ec 40664 golang optional golang-1.21_1.21.8-1.debian.tar.xz
 e862ccabb2e152aca6e150632334593c 6571 golang optional golang-1.21_1.21.8-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEc793ixFTU9Vien7Zh7Iv85yjO70FAmXoHGcACgkQh7Iv85yj
O72ygAf/Ww0CuF4ZoQMn5sYSiH8F6wzDxXUCRPsND0/3PY1EotCGeY5O9yWbyjRs
eMJQmhUoSwUbn7RQFGrpN7qZy+AywcAadbZpwL63KQYurxcHJBJrZciRnG7EKfwC
Xmq2JFpUIBLO+Q+e6JWZIDWCx1R98/b3b3+vOYKTtzormyjUktzOk/lba03slqsB
hGNwzEjXp57ARAbx3iIwjKEIjSh407xIEsmIvELhKkAcnk9pstGLhyexNPofTOBV
kSB8b/szOJzkddxUjAEjTPbVlhy32Vic6PFnJRX30DmBdUkqjWD/0QWUZL4XnJ9k
iAnupdm5vpYfqe1z9mrBChm7dYw2Cw==
=lRnb
-----END PGP SIGNATURE-----

Attachment: pgpVtFljcVbsG.pgp
Description: PGP signature

Reply to: