pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/lang Update go111 to 1.11.5 (security).
details: https://anonhg.NetBSD.org/pkgsrc/rev/608726078ace
branches: trunk
changeset: 318337:608726078ace
user: bsiegert <bsiegert%pkgsrc.org@localhost>
date: Thu Jan 24 09:26:21 2019 +0000
description:
Update go111 to 1.11.5 (security).
This release addresses a recently supported security issue. This DoS
vulnerability in the crypto/elliptic implementations of the P-521 and P-384
elliptic curves may let an attacker craft inputs that consume excessive
amounts of CPU.
These inputs might be delivered via TLS handshakes, X.509 certificates, JWT
tokens, ECDH shares or ECDSA signatures. In some cases, if an ECDH private
key is reused more than once, the attack can also lead to key recovery.
The issue is CVE-2019-6486 and Go issue golang.org/issue/29903.
See the Go issue for more details.
diffstat:
lang/go/version.mk | 4 ++--
lang/go111/distinfo | 10 +++++-----
2 files changed, 7 insertions(+), 7 deletions(-)
diffs (36 lines):
diff -r d471eaaafebf -r 608726078ace lang/go/version.mk
--- a/lang/go/version.mk Thu Jan 24 09:19:45 2019 +0000
+++ b/lang/go/version.mk Thu Jan 24 09:26:21 2019 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: version.mk,v 1.53 2018/12/20 17:38:23 jperkin Exp $
+# $NetBSD: version.mk,v 1.54 2019/01/24 09:26:21 bsiegert Exp $
CTF_SUPPORTED= no
SSP_SUPPORTED= no
@@ -6,7 +6,7 @@
.include "../../mk/bsd.prefs.mk"
-GO111_VERSION= 1.11.4
+GO111_VERSION= 1.11.5
GO110_VERSION= 1.10.7
GO19_VERSION= 1.9.7
GO14_VERSION= 1.4.3
diff -r d471eaaafebf -r 608726078ace lang/go111/distinfo
--- a/lang/go111/distinfo Thu Jan 24 09:19:45 2019 +0000
+++ b/lang/go111/distinfo Thu Jan 24 09:26:21 2019 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.4 2018/12/19 15:27:03 bsiegert Exp $
+$NetBSD: distinfo,v 1.5 2019/01/24 09:26:21 bsiegert Exp $
-SHA1 (go1.11.4.src.tar.gz) = 2a24c96d951fedfa70d9774982071b9e6914d976
-RMD160 (go1.11.4.src.tar.gz) = 04059a897adae2783c566a7287eda172926309e9
-SHA512 (go1.11.4.src.tar.gz) = 9aa2e1800807841ec0432289b672c1607bdcb295f29c02d38adfaf1e3bf043040c9f916e4cb170875d92fe168c5ba6baef2b3d1f824a56ff9138ca2cdcc646e0
-Size (go1.11.4.src.tar.gz) = 21108067 bytes
+SHA1 (go1.11.5.src.tar.gz) = 94ca79ff63fa5118cb4c7a7113b153d043e7bbf3
+RMD160 (go1.11.5.src.tar.gz) = 72ce2f34def54143595157f9e51b731757495272
+SHA512 (go1.11.5.src.tar.gz) = 63500238e8d73e4b29279ee3eb9242960de93ccd3b52bacc4009f45cf123cb8edfe5f519d38c5b07bdf2a810925758511ff3255310a056113d0169f78be1d2f6
+Size (go1.11.5.src.tar.gz) = 21108339 bytes
SHA1 (patch-misc_io_clangwrap.sh) = cd91c47ba0fe7b6eb8009dd261c0c26c7d581c29
SHA1 (patch-src_cmd_dist_util.go) = 24e6f1b6ded842a8ce322a40e8766f7d344bc47e
SHA1 (patch-src_cmd_link_internal_ld_elf.go) = 990a54e3baf239916e4c7f0c1d54240e2898601a
Home |
Main Index |
Thread Index |
Old Index