[pkgsrc/trunk]: pkgsrc/lang Update go111 to 1.11.5 (security).

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/lang Update go111 to 1.11.5 (security).
From: bsiegert <bsiegert%pkgsrc.org@localhost>
Date: Thu, 24 Jan 2019 10:43:10 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/608726078ace
branches:  trunk
changeset: 318337:608726078ace
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Thu Jan 24 09:26:21 2019 +0000

description:
Update go111 to 1.11.5 (security).

This release addresses a recently supported security issue. This DoS
vulnerability in the crypto/elliptic implementations of the P-521 and P-384
elliptic curves may let an attacker craft inputs that consume excessive
amounts of CPU.

These inputs might be delivered via TLS handshakes, X.509 certificates, JWT
tokens, ECDH shares or ECDSA signatures. In some cases, if an ECDH private
key is reused more than once, the attack can also lead to key recovery.

The issue is CVE-2019-6486 and Go issue golang.org/issue/29903.
See the Go issue for more details.

diffstat:

 lang/go/version.mk  |   4 ++--
 lang/go111/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (36 lines):

diff -r d471eaaafebf -r 608726078ace lang/go/version.mk
--- a/lang/go/version.mk        Thu Jan 24 09:19:45 2019 +0000
+++ b/lang/go/version.mk        Thu Jan 24 09:26:21 2019 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: version.mk,v 1.53 2018/12/20 17:38:23 jperkin Exp $
+# $NetBSD: version.mk,v 1.54 2019/01/24 09:26:21 bsiegert Exp $
 
 CTF_SUPPORTED=         no
 SSP_SUPPORTED=         no
@@ -6,7 +6,7 @@
 
 .include "../../mk/bsd.prefs.mk"
 
-GO111_VERSION= 1.11.4
+GO111_VERSION= 1.11.5
 GO110_VERSION= 1.10.7
 GO19_VERSION=  1.9.7
 GO14_VERSION=  1.4.3
diff -r d471eaaafebf -r 608726078ace lang/go111/distinfo
--- a/lang/go111/distinfo       Thu Jan 24 09:19:45 2019 +0000
+++ b/lang/go111/distinfo       Thu Jan 24 09:26:21 2019 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.4 2018/12/19 15:27:03 bsiegert Exp $
+$NetBSD: distinfo,v 1.5 2019/01/24 09:26:21 bsiegert Exp $
 
-SHA1 (go1.11.4.src.tar.gz) = 2a24c96d951fedfa70d9774982071b9e6914d976
-RMD160 (go1.11.4.src.tar.gz) = 04059a897adae2783c566a7287eda172926309e9
-SHA512 (go1.11.4.src.tar.gz) = 9aa2e1800807841ec0432289b672c1607bdcb295f29c02d38adfaf1e3bf043040c9f916e4cb170875d92fe168c5ba6baef2b3d1f824a56ff9138ca2cdcc646e0
-Size (go1.11.4.src.tar.gz) = 21108067 bytes
+SHA1 (go1.11.5.src.tar.gz) = 94ca79ff63fa5118cb4c7a7113b153d043e7bbf3
+RMD160 (go1.11.5.src.tar.gz) = 72ce2f34def54143595157f9e51b731757495272
+SHA512 (go1.11.5.src.tar.gz) = 63500238e8d73e4b29279ee3eb9242960de93ccd3b52bacc4009f45cf123cb8edfe5f519d38c5b07bdf2a810925758511ff3255310a056113d0169f78be1d2f6
+Size (go1.11.5.src.tar.gz) = 21108339 bytes
 SHA1 (patch-misc_io_clangwrap.sh) = cd91c47ba0fe7b6eb8009dd261c0c26c7d581c29
 SHA1 (patch-src_cmd_dist_util.go) = 24e6f1b6ded842a8ce322a40e8766f7d344bc47e
 SHA1 (patch-src_cmd_link_internal_ld_elf.go) = 990a54e3baf239916e4c7f0c1d54240e2898601a

Prev by Date: [pkgsrc/trunk]: pkgsrc/devel/py-flakes py-flakes: updated to 2.1.0
Next by Date: [pkgsrc/trunk]: pkgsrc/print tex-filecontents{,-doc}: update to 1.4
Previous by Thread: [pkgsrc/trunk]: pkgsrc/devel/py-flakes py-flakes: updated to 2.1.0
Next by Thread: [pkgsrc/trunk]: pkgsrc/print tex-filecontents{,-doc}: update to 1.4
Indexes:

Home | Main Index | Thread Index | Old Index