-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 15 Aug 2019 21:48:59 +0200 Source: golang-1.11 Architecture: source Version: 1.11.6-1+deb10u1 Distribution: buster-security Urgency: high Maintainer: Go Compiler Team <team+go-compiler@tracker.debian.org> Changed-By: Dr. Tobias Quathamer <toddy@debian.org> Changes: golang-1.11 (1.11.6-1+deb10u1) buster-security; urgency=high . * Fix Denial of Service vulnerabilities in the HTTP/2 implementation. https://github.com/golang/go/issues/33631 CVE-2019-9512, CVE-2019-9514 * Fix multiple Parsing Issues in URL.Parse https://github.com/golang/go/issues/29098 CVE-2019-14809 Checksums-Sha1: 21bd713339d0e31690826b7dc265fad1b40990d3 2615 golang-1.11_1.11.6-1+deb10u1.dsc ccf0cf132f9f76af27681e1db9088799a8796b8d 33384 golang-1.11_1.11.6-1+deb10u1.debian.tar.xz 0d3bb331daee8baf83b899e521afb0b48fc35ce2 6143 golang-1.11_1.11.6-1+deb10u1_amd64.buildinfo 3da44308ca85c4b78b62b735060ebb2479ec1dcf 21113406 golang-1.11_1.11.6.orig.tar.gz Checksums-Sha256: 76ccc98aaf9e5af9ff156bb36e3e3adca84841bd24aedc34e9099aba7b564551 2615 golang-1.11_1.11.6-1+deb10u1.dsc aebb4ea3a93e9905c4948474bc1c19aefd7a51865f7fb065faecc8e9aba7849d 33384 golang-1.11_1.11.6-1+deb10u1.debian.tar.xz 258a506dbe63993ca6aae049521dbdfec96d15648d99be9dcaa3795a890b0ae3 6143 golang-1.11_1.11.6-1+deb10u1_amd64.buildinfo a96da1425dcbec094736033a8a416316547f8100ab4b72c31d4824d761d3e133 21113406 golang-1.11_1.11.6.orig.tar.gz Files: d40cf48f39748ccd2942b7462e6f1ffe 2615 devel optional golang-1.11_1.11.6-1+deb10u1.dsc 0a3b6ba0d756a2c946f79a220d3b8dce 33384 devel optional golang-1.11_1.11.6-1+deb10u1.debian.tar.xz c109085558f3f7edb4e1396e89e3fcdc 6143 devel optional golang-1.11_1.11.6-1+deb10u1_amd64.buildinfo 1d1304eb9f2d0de162b46e17ed51baf1 21113406 devel optional golang-1.11_1.11.6.orig.tar.gz -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE0cuPObxd7STF0seMEwLx8Dbr6xkFAl1XA9gACgkQEwLx8Dbr 6xnV2A//dRu4nSQHeF6NV474LUvMz4MKm07GO6evhzjT2ZXwPq8NH59dyTMiZ5cG hv4sFFo5ImHNN89aDe8K8EEJfpTcaiPAkyJBlB4upZeisRnBodnXPgdfQFV2AhSq m2N+vmGR1c3xdwPsDCC7CQs9b+lO1A6VzOTgeVyDcwtztRVDiau4/q99vT6K2M6N CuV4Qf12Nn/YyhJ16PH96S5cUx5xBAsdgwSVjikcxfnF/CoSCuRQSey5l6jle5+A UCasbZvlq2jXaa4pjcUxT3THixyJ3XsAhhdqfqU86nuGmj/+A1TRBYYoWEpReOEK 0P0RiiG0FXSi+r9t09YnM3WwsLVKKFs748jw9HyLU1nePPsj18NOjx4HtuMCcwzX VsagCdHgb3KyB741TvPIuBY6w8mvCjl4CQJIFW75TRvO6F8wBYSaZlrFvzjeCaFx hIy8m6SWk/JPi5MArRTMuU4bCtfkiowCuNwBAZsL92YTvqIU1Nnm08YM6/JgeBGL h6UemoW4eNwh0aHRUlbfCkmz6tFD81Z+bmhF3BPw+9oxYuwoB9UHrVuX+oE2Uwwd QVsvVcQ1JtJr7JC6I+31dH26agvk2DPU82siZYj08XEms0X3i7qpsLTztI7kY18v od6CClcDcP5MP3HMlK/jiyZuKUHOtQcNZR8NblmU1zbzWgOyvn4= =rKQJ -----END PGP SIGNATURE-----