mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-25 10:59:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
7397fefc2f1abc8c35d38c48c62f34dd1bf7b9db
poky/meta/recipes-devtools/go
History
Soumya Sambu 7506cbff40 go: Fix CVE-2024-24789 
The archive/zip package's handling of certain types of invalid zip files
differs from the behavior of most zip implementations. This misalignment
could be exploited to create an zip file with contents that vary depending
on the implementation reading the file. The archive/zip package now rejects
files containing these errors.

References:
https://nvd.nist.gov/vuln/detail/CVE-2024-24789

Upstream-patch:
c8e40338cf

(From OE-Core rev: f198fdc392c6e3b99431383ab6577749e83f1cb3)

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2024-08-08 09:03:45 -07:00
..
go-1.18
go: Fix for CVE-2023-45288
2024-05-02 06:21:09 -07:00
go-1.19
go: Fix CVE-2023-29409
2023-08-30 04:46:35 -10:00
go-1.20
go: Fix CVE-2023-45285 and CVE-2023-45287
2024-02-15 03:51:56 -10:00
go-1.21
go: Fix CVE-2024-24789
2024-08-08 09:03:45 -07:00
go_1.17.13.bb
meta: remove True option to getVar and getVarFlag calls (again)
2023-02-15 21:46:56 +00:00
go-1.17.13.inc
go: Fix CVE-2024-24789
2024-08-08 09:03:45 -07:00
go-binary-native_1.17.13.bb
go: update v1.17.12 -> v1.17.13
2022-08-28 07:51:29 +01:00
go-common.inc
go: correctly set debug-prefix-map and build directory
2022-01-05 17:18:15 +00:00
go-cross_1.17.13.bb
go: update v1.17.12 -> v1.17.13
2022-08-28 07:51:29 +01:00
go-cross-canadian_1.17.13.bb
go: update v1.17.12 -> v1.17.13
2022-08-28 07:51:29 +01:00
go-cross-canadian.inc
go: Remove three unnecessary paths from do_compile[dirs]
2022-03-15 08:40:09 +00:00
go-cross.inc
go: Remove three unnecessary paths from do_compile[dirs]
2022-03-15 08:40:09 +00:00
go-crosssdk_1.17.13.bb
go: update v1.17.12 -> v1.17.13
2022-08-28 07:51:29 +01:00
go-crosssdk.inc
go-crosssdk: avoid host contamination by GOCACHE
2023-01-06 17:33:23 +00:00
go-native_1.17.13.bb
go-native: switch from SRC_URI:append to SRC_URI +=
2022-09-28 08:02:11 +01:00
go-runtime_1.17.13.bb
go: update v1.17.12 -> v1.17.13
2022-08-28 07:51:29 +01:00
go-runtime.inc
go: Remove three unnecessary paths from do_compile[dirs]
2022-03-15 08:40:09 +00:00
go-target.inc
go: Remove three unnecessary paths from do_compile[dirs]
2022-03-15 08:40:09 +00:00