projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a66a378) | patch
golang: Update to 1.22.1 23475/head
authorZephyr Lykos <git@mochaa.ws>
Fri, 8 Mar 2024 04:35:07 +0000 (12:35 +0800)
committerZephyr Lykos <git@mochaa.ws>
Wed, 20 Mar 2024 09:25:09 +0000 (17:25 +0800)
commit456fa1f1b653831c7ddf896128f3b470391e99ee
tree3bc6b9233280b69b22138c2c801444a0dcabeda8tree | snapshot
parenta66a37866981e6ab53197932319ef19589698e26commit | diff
golang: Update to 1.22.1

Go 1.22.1 contains the following security fixes:

- CVE-2024-24783:
  crypto/x509: Verify panics on certificates with an unknown public key
  algorithm
- CVE-2023-45290
  net/http: memory exhaustion in Request.ParseMultipartForm
- CVE-2023-45289
  net/http, net/http/cookiejar: incorrect forwarding of sensitive headers
  and cookies on HTTP redirect
- CVE-2024-24785
  html/template: errors returned from MarshalJSON methods may break
  template escaping
- CVE-2024-24784
  net/mail: comments in display names are incorrectly handled

https://go.dev/doc/devel/release#go1.22.1
https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg

Signed-off-by: Zephyr Lykos <git@mochaa.ws>
lang/golang/golang/Makefile diff | blob | history
Mirror of packages feed