packages/golang
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
73 Commits 1 Branch 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
hanchao bcd9f462c2 golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879 
Score: Score:CVE-2022-41715:4,CVE-2022-2880:5.3,CVE-2022-2879:6.2
Reference:https://go-review.googlesource.com/c/go/+/438501,
	https://go-review.googlesource.com/c/go/+/433695,
	https://go-review.googlesource.com/c/go/+/438500
Conflict:NA
Reason: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
(cherry picked from commit 35fc18fe0e32f4e0889de907f6f8eb1adfe492c2)
2022-10-13 17:27:12 +08:00
0001-drop-hard-code-cert.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0001-release-branch.go1.15-doc-go1.15-mention-1.15.3-cgo-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0002-fix-patch-cmd-go-internal-modfetch-do-not-sho.patch
fix CVE-2022-23773
2022-03-24 11:35:33 +08:00
0002-release-branch.go1.15-cmd-go-fix-mod_get_fallback-te.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0003-release-branch.go1.15-internal-execabs-only-run-test.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0004-release-branch.go1.15-cmd-compile-don-t-short-circui.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0005-release-branch.go1.15-cmd-go-fix-get_update_unknown_.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0006-release-branch.go1.15-net-http-update-bundled-x-net-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0007-release-branch.go1.15-cmd-go-don-t-lookup-the-path-f.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0008-release-branch.go1.15-cmd-link-internal-ld-pe-fix-se.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0009-release-branch.go1.15-cmd-internal-goobj2-fix-buglet.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0010-release-branch.go1.15-runtime-don-t-adjust-timer-pp-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0011-release-branch.go1.15-runtime-cgo-fix-Android-build-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0013-release-branch.go1.15-internal-poll-if-copy_file_ran.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0014-release-branch.go1.15-internal-poll-netpollcheckerr-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0015-release-branch.go1.15-cmd-compile-do-not-assume-TST-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0016-release-branch.go1.15-syscall-do-not-overflow-key-me.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0017-release-branch.go1.15-time-correct-unusual-extension.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0018-release-branch.go1.15-cmd-compile-fix-escape-analysi.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0019-release-branch.go1.15-net-http-ignore-connection-clo.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0020-release-branch.go1.15-net-http-add-connections-back-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0021-release-branch.go1.15-security-encoding-xml-prevent-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0023-release-branch.go1.15-cmd-go-don-t-report-missing-st.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0025-release-branch.go1.15-cmd-go-internal-modfetch-detec.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0026-release-branch.go1.15-cmd-link-generate-trampoline-f.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0027-release-branch.go1.15-net-http-update-bundled-x-net-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0028-release-branch.go1.15-net-http-fix-detection-of-Roun.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0029-release-branch.go1.15-build-set-GOPATH-consistently-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0030-release-branch.go1.15-database-sql-fix-tx-stmt-deadl.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0031-release-branch.go1.15-cmd-compile-disable-shortcircu.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0032-release-branch.go1.15-runtime-non-strict-InlTreeInde.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0033-release-branch.go1.15-cmd-cgo-avoid-exporting-all-sy.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0034-release-branch.go1.15-cmd-link-avoid-exporting-all-s.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0035-release-branch.go1.15-cmd-cgo-remove-unnecessary-spa.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0037-release-branch.go1.15-time-use-offset-and-isDST-when.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0038-release-branch.go1.15-std-update-golang.org-x-net-to.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0039-release-branch.go1.15-runtime-time-disable-preemptio.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0040-release-branch.go1.15-runtime-non-strict-InlTreeInde.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0041-release-branch.go1.15-runtime-pprof-skip-tests-for-A.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0043-release-branch.go1.15-math-big-fix-TestShiftOverlap-.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0044-release-branch.go1.15-math-big-remove-the-s390x-asse.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0045-net-http-fix-hijack-hang-at-abortPendingRead.patch
batch synchronization
2021-06-18 15:46:44 +08:00
0046-release-branch.go1.15-net-verify-results-from-Lookup.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0047-release-branch.go1.15-archive-zip-only-preallocate-F.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0048-release-branch.go1.15-net-http-httputil-always-remov.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0049-release-branch.go1.15-math-big-check-for-excessive-e.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0050-release-branch.go1.15-crypto-tls-test-key-type-when-.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0051-net-reject-leading-zeros-in-IP-address-parsers.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0052-release-branch.go1.16-misc-wasm-cmd-link-do-not-let-.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0053-net-http-httputil-close-incoming-ReverseProxy-reques.patch
fix CVE-2021-33195,CVE-2021-33196,CVE-2021-33197,CVE-2021-33198,CVE-2021-34558,CVE-2021-29923,CVE-2021-38297,CVE-2021-36221
2021-10-27 11:18:41 +08:00
0054-release-branch.go1.16-net-http-update-bundled-golang.patch
fix CVE-2021-44716
2022-01-19 16:25:03 +08:00
0055-release-branch.go1.16-archive-zip-prevent-preallocat.patch
fix CVE-2021-39293
2022-02-08 11:07:36 +08:00
0056-release-branch.go1.16-debug-macho-fail-on-invalid-dy.patch
fix CVE-2021-41771
2022-03-02 11:38:36 +08:00
0057-release-branch.go1.16-math-big-prevent-overflow-in-R.patch
fix CVE-2022-23772 CVE-2022-23806
2022-03-05 16:42:40 +08:00
0058-release-branch.go1.16-crypto-elliptic-make-IsOnCurve.patch
fix CVE-2022-23772 CVE-2022-23806
2022-03-05 16:42:40 +08:00
0059-release-branch.go1.16-regexp-syntax-reject-very-deep.patch
fix CVE-2022-24921
2022-03-14 15:59:38 +08:00
0060-cmd-go-internal-modfetch-do-not-short-circuit-canoni.patch
fix CVE-2022-23773
2022-03-24 11:35:33 +08:00
0061-release-branch.go1.17-crypto-elliptic-tolerate-zero-.patch
fix CVE-2022-28327,CVE-2022-24675
2022-05-12 10:59:10 +08:00
0062-release-branch.go1.17-encoding-pem-fix-stack-overflo.patch
fix CVE-2022-28327,CVE-2022-24675
2022-05-12 10:59:10 +08:00
0063-release-branch.go1.16-syscall-fix-ForkLock-spurious-.patch
fix CVE-2021-44717
2022-05-16 15:03:09 +08:00
0064-release-branch.go1.17-net-http-preserve-nil-values-i.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0065-release-branch.go1.17-go-parser-limit-recursion-dept.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0066-release-branch.go1.17-net-http-don-t-strip-whitespac.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0067-release-branch.go1.17-encoding-xml-limit-depth-of-ne.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0068-release-branch.go1.17-encoding-gob-add-a-depth-limit.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0069-release-branch.go1.17-path-filepath-fix-stack-exhaus.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0070-release-branch.go1.17-encoding-xml-use-iterative-Ski.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0071-release-branch.go1.17-compress-gzip-fix-stack-exhaus.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0072-release-branch.go1.17-crypto-tls-randomly-generate-t.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0073-release-branch.go1.17-crypto-rand-properly-handle-la.patch
golang: fix CVE-2022-32148,CVE-2022-1962,CVE-2022-1705,CVE-2022-30633,
2022-07-27 23:11:25 +08:00
0074-release-branch.go1.17-math-big-check-buffer-lengths-.patch
golang: fix CVE-2022-32189
2022-08-08 19:30:34 +08:00
0075-path-filepath-do-not-remove-prefix-.-when-following-.patch
golang: fix CVE-2022-29804,CVE-2022-29526
2022-08-18 20:02:38 +08:00
0076-release-branch.go1.17-syscall-check-correct-group-in.patch
golang: fix CVE-2022-29804,CVE-2022-29526
2022-08-18 20:02:38 +08:00
0077-release-branch.go1.16-runtime-consistently-access-po.patch
runtime: consistently access pollDesc r/w Gs with atomics
2022-09-13 09:57:27 +08:00
0078-release-branch.go1.18-net-http-update-bundled-golang.patch
golang: fix CVE-2022-27664
2022-09-15 14:31:15 +08:00
0079-release-branch.go1.18-regexp-limit-size-of-parsed-re.patch
golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
2022-10-13 17:27:12 +08:00
0080-release-branch.go1.18-net-http-httputil-avoid-query-.patch
golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
2022-10-13 17:27:12 +08:00
0081-release-branch.go1.18-archive-tar-limit-size-of-head.patch
golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
2022-10-13 17:27:12 +08:00
0082-net-url-reject-query-values-with-semicolons.patch
golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
2022-10-13 17:27:12 +08:00
go1.15.7.src.tar.gz
golang: upgrade to 1.15.7
2021-03-12 16:17:36 +08:00
golang.spec
golang: fix CVE-2022-41715,CVE-2022-2880,CVE-2022-2879
2022-10-13 17:27:12 +08:00
golang.yaml
golang: upgrade to 1.13.15
2020-08-18 20:36:44 +08:00
Description
No description provided
83 MiB
Languages
Diff 100%