security updates of Golang packages

To: debian-go@lists.debian.org
Subject: security updates of Golang packages
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sun, 24 Apr 2022 11:20:11 +0000 (UTC)
Message-id: <[🔎] alpine.DEB.2.21.2204241118000.30232@postfach.intern.alteholz.me>

Hi everybody,

some time ago, before the release of Buster, the Release Team and theSecurity Team critizied the missing tooling for security updates of Golangpackages[1].I would like to improve the situation here and try to develop some scriptsto automatically rebuild/upload affected packages (they are basicallybased on the reverse dependencies detected by ratt). So I hope you don'tmind if I upload seemingly random packages. The corresponding changelogentry should explain what CVE triggered the upload.If you notice a missing or a superfluous upload, please don't hesitate totell me.


  Thorsten

[1] https://lists.debian.org/debian-release/2018/06/msg00725.html

Reply to:

Follow-Ups:
- Re: security updates of Golang packages
  - From: Cyril Brulebois <cyril@debamax.com>
- Re: security updates of Golang packages
  - From: Shengjing Zhu <zhsj@debian.org>

Prev by Date: seeking RFS for golang-github-la5nta-wl2k-go v0.9.2-1
Next by Date: Re: security updates of Golang packages
Previous by thread: Re: seeking RFS for golang-github-la5nta-wl2k-go v0.9.2-1
Next by thread: Re: security updates of Golang packages
Index(es):
- Date
- Thread