golang-1.19 1.19.2-1ubuntu1.1 source package in Ubuntu

Changelog

golang-1.19 (1.19.2-1ubuntu1.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: html injection vulnerability
    - debian/patches/CVE-2023-24539.patch: disallow angle brackets in CSS
      values
    - debian/patches/CVE-2023-29400.patch: emit filterFailsafe for empty
      unquoted attr value
    - CVE-2023-24539
    - CVE-2023-29400
  * SECURITY UPDATE: javascript injection vulnerability
    - debian/patches/CVE-2023-24540.patch: handle all JS whitespace
      characters
    - CVE-2023-24540
  * SECURITY UPDATE: large handshake records cause panic
    - debian/patches/CVE-2022-41724.patch: replace all usages of
      BytesOrPanic
    - CVE-2022-41724
  * SECURITY UPDATE: denial of service from excessive resource consumption
    - debian/patches/CVE-2022-41725.patch: imit memory/inode consumption of
      ReadForm
    - CVE-2022-41725
  * SECURITY UPDATE: DoS issue due to panic
    - debian/patches/CVE-2023-24534.patch: avoid overpredicting the number
      of MIME header keys
    - CVE-2023-24534
  * SECURITY UPDATE: integer overflow issue
    - debian/patches/CVE-2023-24537.patch: reject large line and column
      number in //line directives
    - CVE-2023-24537
  * SECURITY UPDATE: code injection vulnerability
    - debian/patches/CVE-2023-24538.patch: disallow actions in JS template
      literals
    - CVE-2023-24538

 -- Nishit Majithia <email address hidden>  Mon, 05 Jun 2023 09:49:37 +0530

Upload details

Uploaded by:
Nishit Majithia
Uploaded to:
Kinetic
Original maintainer:
Ubuntu Developers
Architectures:
amd64 arm64 armel armhf i386 mips mips64el mipsel ppc64 ppc64el riscv64 s390x all
Section:
golang
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Kinetic updates main misc
Kinetic security main misc

Downloads

File Size SHA-256 Checksum
golang-1.19_1.19.2.orig.tar.gz 25.3 MiB 2ce930d70a931de660fdaf271d70192793b1b240272645bf0275779f6704df6b
golang-1.19_1.19.2.orig.tar.gz.asc 819 bytes bdf5bc6e6a3f071b773e70ae704c4285aa678af73ceae42f73ea80392510b1b6
golang-1.19_1.19.2-1ubuntu1.1.debian.tar.xz 65.4 KiB 4a43c1c4110d69d43ffe5685fefc35fb37753041bdfe4778f91de862116e243d
golang-1.19_1.19.2-1ubuntu1.1.dsc 2.8 KiB 1c333bc494b3c73ed08d6be7b3b069edca7ecaf6793f4a0d6de4083476e8a94c

View changes file

Binary packages built by this source

golang-1.19: Go programming language compiler - metapackage

 The Go programming language is an open source project to make
 programmers more productive. Go is expressive, concise, clean, and
 efficient. Its concurrency mechanisms make it easy to write programs
 that get the most out of multicore and networked machines, while its
 novel type system enables flexible and modular program construction.
 Go compiles quickly to machine code yet has the convenience of
 garbage collection and the power of run-time reflection. It's a
 fast, statically typed, compiled language that feels like a
 dynamically typed, interpreted language.
 .
 This package is a metapackage that, when installed, guarantees
 that (most of) a full Go development environment is installed.
 .
 To use this version, instead of the default one provided by golang-go
 package, add /usr/lib/go-1.19/bin/ to PATH, or invoke /usr/lib/go-1.19/bin/go
 directly.

golang-1.19-doc: Go programming language - documentation

 The Go programming language is an open source project to make
 programmers more productive. Go is expressive, concise, clean, and
 efficient. Its concurrency mechanisms make it easy to write programs
 that get the most out of multicore and networked machines, while its
 novel type system enables flexible and modular program construction.
 Go compiles quickly to machine code yet has the convenience of
 garbage collection and the power of run-time reflection. It's a fast,
 statically typed, compiled language that feels like a dynamically
 typed, interpreted language.
 .
 This package provides the documentation for the Go programming
 language.

golang-1.19-go: Go programming language compiler, linker, compiled stdlib

 The Go programming language is an open source project to make programmers more
 productive. Go is expressive, concise, clean, and efficient. Its concurrency
 mechanisms make it easy to write programs that get the most out of multicore
 and networked machines, while its novel type system enables flexible and
 modular program construction. Go compiles quickly to machine code yet has the
 convenience of garbage collection and the power of run-time reflection. It's a
 fast, statically typed, compiled language that feels like a dynamically typed,
 interpreted language.
 .
 This package provides an assembler, compiler, linker, and compiled libraries
 for the Go programming language.
 .
 To use this version, instead of the default one provided by golang-go package,
 add /usr/lib/go-1.19/bin/ to PATH, or invoke /usr/lib/go-1.19/bin/go directly.

golang-1.19-go-dbgsym: debug symbols for golang-1.19-go
golang-1.19-src: Go programming language - source files

 The Go programming language is an open source project to make programmers more
 productive. Go is expressive, concise, clean, and efficient. Its concurrency
 mechanisms make it easy to write programs that get the most out of multicore
 and networked machines, while its novel type system enables flexible and
 modular program construction. Go compiles quickly to machine code yet has the
 convenience of garbage collection and the power of run-time reflection. It's a
 fast, statically typed, compiled language that feels like a dynamically typed,
 interpreted language.
 .
 This package provides the Go programming language source files needed for
 compilation.