pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/lang



Module Name:    pkgsrc
Committed By:   bsiegert
Date:           Sat Jul 15 10:35:14 UTC 2023

Modified Files:
        pkgsrc/lang/go: version.mk
        pkgsrc/lang/go119: PLIST distinfo

Log Message:
go119: update to 1.19.11 (security)

This minor release includes 1 security fix following the security policy:

net/http: insufficient sanitization of Host header

The HTTP/1 client did not fully validate the contents of the Host header. A
maliciously crafted Host header could inject additional headers or entire
requests. The HTTP/1 client now refuses to send requests containing an invalid
Request.Host or Request.URL.Host value.

Thanks to Bartek Nowotarski for reporting this issue.

Includes security fixes for CVE-2023-29406 and Go issue
https://go.dev/issue/60374


To generate a diff of this commit:
cvs rdiff -u -r1.181 -r1.182 pkgsrc/lang/go/version.mk
cvs rdiff -u -r1.10 -r1.11 pkgsrc/lang/go119/PLIST
cvs rdiff -u -r1.12 -r1.13 pkgsrc/lang/go119/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/lang/go/version.mk
diff -u pkgsrc/lang/go/version.mk:1.181 pkgsrc/lang/go/version.mk:1.182
--- pkgsrc/lang/go/version.mk:1.181     Sat Jun 10 11:41:31 2023
+++ pkgsrc/lang/go/version.mk   Sat Jul 15 10:35:14 2023
@@ -1,4 +1,4 @@
-# $NetBSD: version.mk,v 1.181 2023/06/10 11:41:31 bsiegert Exp $
+# $NetBSD: version.mk,v 1.182 2023/07/15 10:35:14 bsiegert Exp $
 
 #
 # If bsd.prefs.mk is included before go-package.mk in a package, then this
@@ -7,7 +7,7 @@
 .include "go-vars.mk"
 
 GO120_VERSION= 1.20.5
-GO119_VERSION= 1.19.10
+GO119_VERSION= 1.19.11
 GO118_VERSION= 1.18.10
 GO14_VERSION=  1.4.3
 

Index: pkgsrc/lang/go119/PLIST
diff -u pkgsrc/lang/go119/PLIST:1.10 pkgsrc/lang/go119/PLIST:1.11
--- pkgsrc/lang/go119/PLIST:1.10        Tue Jun  6 18:49:04 2023
+++ pkgsrc/lang/go119/PLIST     Sat Jul 15 10:35:14 2023
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.10 2023/06/06 18:49:04 bsiegert Exp $
+@comment $NetBSD: PLIST,v 1.11 2023/07/15 10:35:14 bsiegert Exp $
 bin/go${GOVERSSUFFIX}
 bin/gofmt${GOVERSSUFFIX}
 go119/CONTRIBUTING.md
@@ -2670,6 +2670,7 @@ go119/src/cmd/go/testdata/script/list_co
 go119/src/cmd/go/testdata/script/list_dedup_packages.txt
 go119/src/cmd/go/testdata/script/list_err_cycle.txt
 go119/src/cmd/go/testdata/script/list_err_stack.txt
+go119/src/cmd/go/testdata/script/list_export_e.txt
 go119/src/cmd/go/testdata/script/list_find.txt
 go119/src/cmd/go/testdata/script/list_find_nodeps.txt
 go119/src/cmd/go/testdata/script/list_gofile_in_goroot.txt
@@ -2683,6 +2684,7 @@ go119/src/cmd/go/testdata/script/list_mo
 go119/src/cmd/go/testdata/script/list_overlay.txt
 go119/src/cmd/go/testdata/script/list_parse_err.txt
 go119/src/cmd/go/testdata/script/list_perm.txt
+go119/src/cmd/go/testdata/script/list_pkgconfig_error.txt
 go119/src/cmd/go/testdata/script/list_replace_absolute_windows.txt
 go119/src/cmd/go/testdata/script/list_reserved.txt
 go119/src/cmd/go/testdata/script/list_shadow.txt
@@ -2969,6 +2971,7 @@ go119/src/cmd/go/testdata/script/mod_tid
 go119/src/cmd/go/testdata/script/mod_tidy_duplicates.txt
 go119/src/cmd/go/testdata/script/mod_tidy_error.txt
 go119/src/cmd/go/testdata/script/mod_tidy_indirect.txt
+go119/src/cmd/go/testdata/script/mod_tidy_issue60313.txt
 go119/src/cmd/go/testdata/script/mod_tidy_lazy_self.txt
 go119/src/cmd/go/testdata/script/mod_tidy_newroot.txt
 go119/src/cmd/go/testdata/script/mod_tidy_old.txt

Index: pkgsrc/lang/go119/distinfo
diff -u pkgsrc/lang/go119/distinfo:1.12 pkgsrc/lang/go119/distinfo:1.13
--- pkgsrc/lang/go119/distinfo:1.12     Tue Jun  6 18:49:04 2023
+++ pkgsrc/lang/go119/distinfo  Sat Jul 15 10:35:14 2023
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.12 2023/06/06 18:49:04 bsiegert Exp $
+$NetBSD: distinfo,v 1.13 2023/07/15 10:35:14 bsiegert Exp $
 
-BLAKE2s (go1.19.10.src.tar.gz) = 0a8fd698ed37ecd0490d9adc1262c79dbc423709839dbdfb8c46d2d41367ccfa
-SHA512 (go1.19.10.src.tar.gz) = e8e7d1118d0c409d692ebb406f0e6807781dfd8f7dbe8b03be145e3fc287cde967fde387a216eb9996366508f4e61954cd131cd33f85b652bfd223e37bf41a67
-Size (go1.19.10.src.tar.gz) = 26563069 bytes
+BLAKE2s (go1.19.11.src.tar.gz) = 1e7f9fcb9e9fe1ccedaded7d9a550c1af4bfe0b0e7b2c0763193646061ce7e27
+SHA512 (go1.19.11.src.tar.gz) = da95a1f007a1aff3bd6eeb4b7560654e1ed990e9f6d14663c5309e72714718287a2eb2937f9ec9a041adf384454a2a3bbf8f1671f11c4bd55c76d95e03e7538b
+Size (go1.19.11.src.tar.gz) = 26568253 bytes
 SHA1 (patch-misc_ios_clangwrap.sh) = 0a06403609cb7bce2e6f65444fd322f486761afe
 SHA1 (patch-src_cmd_dist_util.go) = 2d9c2f59e27672d56f5f1a0e3f9d5101a05546a7
 SHA1 (patch-src_crypto_x509_root__bsd.go) = 0b5dead901450967109303f873a2696c65ccac35



Home | Main Index | Thread Index | Old Index