-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 03 May 2021 23:26:09 +0900 Source: golang-1.15 Binary: golang-1.15 golang-1.15-doc golang-1.15-go golang-1.15-src Architecture: source all i386 Version: 1.15.9-1~bpo10+1 Distribution: buster-backports Urgency: high Maintainer: Go Compiler Team <team+go-compiler@tracker.debian.org> Changed-By: Roger Shimizu <rogershimizu@gmail.com> Description: golang-1.15 - Go programming language compiler - metapackage golang-1.15-doc - Go programming language - documentation golang-1.15-go - Go programming language compiler, linker, compiled stdlib golang-1.15-src - Go programming language - source files Closes: 980747 982701 982714 982720 982724 982734 Changes: golang-1.15 (1.15.9-1~bpo10+1) buster-backports; urgency=medium . * Team upload. * Rebuild for buster-backports (Closes: #980747). . golang-1.15 (1.15.9-1) unstable; urgency=medium . * Team upload. * New upstream version 1.15.9 + encoding/xml: infinite loop when using `xml.NewTokenDecoder` with a custom `TokenReader`. CVE-2021-27918 . golang-1.15 (1.15.8-4) unstable; urgency=medium . * Team upload. * Revert "0007-cmd-link-check-CGO_CFLAGS-for-non-g-I-O-options-befo.patch" This patch causes: 1. unexpected error message, which makes some packages FTBFS loadinternal: cannot find runtime/cgo Closes: #982701, #982714, #982720, #982724, #982734 2. unable to build package on riscv64 external linking not supported for linux/riscv64 . golang-1.15 (1.15.8-3) unstable; urgency=high . * Re-upload with urgency=high due to impending freeze. . golang-1.15 (1.15.8-2) unstable; urgency=medium . * d/patches/0007-cmd-link-check-CGO_CFLAGS-for-non-g-I-O-options-befo.patch: disable internal linking when dynamically linking and CGO_CFLAGS contains flags that might make host object files that the internal linkers ELF reader does not support. This fixes lots of package builds when LTO is enabled by default via dpkg-buildflags. . golang-1.15 (1.15.8-1) unstable; urgency=medium . * Team upload. * New upstream version 1.15.8 * Skip userns tests in schroot. When schroot is using overlayfs, it fails to detect it as chroot. . golang-1.15 (1.15.7-1) unstable; urgency=medium . * Team upload. * New upstream version 1.15.7 + crypto/elliptic: incorrect operations on the P-224 curve CVE-2021-3114 . golang-1.15 (1.15.6-1) unstable; urgency=medium . * Team upload. . [ Balint Reczey ] * cmd/dist: increase default timeout scale for arm (LP: #1893640) . [ Shengjing Zhu ] * New upstream version 1.15.6 * Drop CGO_LDFLAGS patch, fixed in go1.15.6 . golang-1.15 (1.15.5-2) unstable; urgency=medium . * Team upload. * Backport patch to fix usability regression in go1.15.5 cmd/go: allow flags in CGO_LDFLAGS environment variable not in security allowlist https://github.com/golang/go/issues/42567 . golang-1.15 (1.15.5-1) unstable; urgency=medium . * New upstream version 1.15.5. . golang-1.15 (1.15.4-1) unstable; urgency=medium . * New upstream version 1.15.4. . golang-1.15 (1.15.2-1) unstable; urgency=medium . * New upstream version 1.15.2. . golang-1.15 (1.15-2) unstable; urgency=medium . * Team upload. * Backport fix for arm64 cgo test https://go-review.googlesource.com/c/go/+/237858 . golang-1.15 (1.15-1) unstable; urgency=medium . * New upstream version 1.15 . golang-1.15 (1.15~rc2-1) unstable; urgency=medium . * New upstream version 1.15~rc2 - encoding/binary: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs. CVE-2020-16845 . golang-1.15 (1.15~rc1-1) unstable; urgency=medium . [ Shengjing Zhu ] * Backport patches to fix the FPU ABI problems for mips32 https://go-review.googlesource.com/c/go/+/237058/ . [ Dr. Tobias Quathamer ] * New upstream version 1.15~rc1 - Refresh patches - net/http: Expect 100-continue panics in httputil.ReverseProxy. See https://github.com/golang/go/issues/34902, fixes CVE-2020-15586 . golang-1.15 (1.15~beta1-2) unstable; urgency=medium . * Source-only upload. . golang-1.15 (1.15~beta1-1) unstable; urgency=medium . * New upstream major version. - Drop patch to fix FTBFS on $HOME managed with git, has been applied upstream. - Refresh remaining patches Checksums-Sha1: 698f157133d7df794bbf70c6c9965a6829b60be0 2678 golang-1.15_1.15.9-1~bpo10+1.dsc d209824a1805cd6f9c4bee98df299319900febda 41572 golang-1.15_1.15.9-1~bpo10+1.debian.tar.xz f4e8d4a3d737bedb7571705c07b949437598cb3d 2453196 golang-1.15-doc_1.15.9-1~bpo10+1_all.deb 6e7111a40fa507cb3e79579f9bcb676655d19596 46224720 golang-1.15-go_1.15.9-1~bpo10+1_i386.deb ae445cf22adcd597faa4deb2465247aa07a0a431 13841380 golang-1.15-src_1.15.9-1~bpo10+1_i386.deb 500af57b14615d331cc688a739da9390f2b56e98 26708 golang-1.15_1.15.9-1~bpo10+1_all.deb e49dc741f277c9a3050a78ae6115407100004dd9 6642 golang-1.15_1.15.9-1~bpo10+1_i386.buildinfo Checksums-Sha256: 80cf24127cef4ce6344219c73ca9900dff6449baed1c884d5bd3904a157ffa31 2678 golang-1.15_1.15.9-1~bpo10+1.dsc 5b8dfd7bae3f9c14f337a8c29db2889b1b956ba2b5fe3659b658dfc845681764 41572 golang-1.15_1.15.9-1~bpo10+1.debian.tar.xz e7d09621041acfe65b7a6346a7dec772c28118da55f08111a976a1ff301b6ed3 2453196 golang-1.15-doc_1.15.9-1~bpo10+1_all.deb 032bb05b281d800e5b0e3c7e2e41fb571474b4f0fa0ae08c6eb6f1e882f091df 46224720 golang-1.15-go_1.15.9-1~bpo10+1_i386.deb 6dc1373ffc9b0cbda8d4ac7d1bf2aa13264573f256523a54f54ee34830745fd2 13841380 golang-1.15-src_1.15.9-1~bpo10+1_i386.deb f24336a7ea0008466be2ab03bc0274bc4f69774f870b4497bbe8ed677d0bb99d 26708 golang-1.15_1.15.9-1~bpo10+1_all.deb 2d669d03ed36df9d5f3163ac5495e70e540375c3ecdf27da999e3e311b9ef6f0 6642 golang-1.15_1.15.9-1~bpo10+1_i386.buildinfo Files: ad0213023992e4e717a6cff441b75104 2678 devel optional golang-1.15_1.15.9-1~bpo10+1.dsc 5ff647fc7001bf052c99cb21567ad8da 41572 devel optional golang-1.15_1.15.9-1~bpo10+1.debian.tar.xz b203119f1a3edef4f9368fa6956238be 2453196 doc optional golang-1.15-doc_1.15.9-1~bpo10+1_all.deb fcf3bb929a7059bf32f950c75f443eff 46224720 devel optional golang-1.15-go_1.15.9-1~bpo10+1_i386.deb 11a62bca9233b28e766255fa7ba4b33b 13841380 devel optional golang-1.15-src_1.15.9-1~bpo10+1_i386.deb d4cd9882ff63c5d19496132dd491ec01 26708 devel optional golang-1.15_1.15.9-1~bpo10+1_all.deb dd5974344236e828d4a042685640d92f 6642 devel optional golang-1.15_1.15.9-1~bpo10+1_i386.buildinfo -----BEGIN PGP SIGNATURE----- iQJLBAEBCgA1FiEECjKtvoA5m+cWOFnspHhrDacDNKgFAmCQFwcXHHJvZ2Vyc2hp bWl6dUBnbWFpbC5jb20ACgkQpHhrDacDNKihYg/+MmcmGZBTWbnWHQCnnnllFi0z oJeYtZx1Ap9TYG0wMaNZaig6+PKFmJzqL3d751cZ8edql0LdN8qjcTpcyuWh3SOP gk0VADaRmTyPI5uYE12XHgYscnZsD7qyqeTvmbOqWKdHwwGZue2xBzmri01h144K 8E6rf6/9Uv/H9N1nFR4zOtGrPfClAA1nP4UWp9XYULW1XlZRRtQ5H3c5puZVKv7y DQSP5ZmMh3psM1cWGlptqjaY10VjaMqQmiF5OXK/NhuhzSxBw9TCoJtLiqisR4Gt SJ5XIDXuGxQsq/XWi/8NRCtLZBn12UWbROMCkZvEPMNUvpRWgJqvEhwCnLXPir4z 8p6ICO3lsdC0WfUq5cg/LHJKqq11+BKQ4F1PqxlRzayePps1GxP7EIGh/KoQWcpr Rv5chxJjQkYkLK8MNMCPxytkdy0cb0bt8e5LFZmIGH6WWPJ8HHEwGbbT1cc8vQCl gXj6FVeeYBH8TqXiaDqQzS3tGbOCEigrY5eRxXJ4gGUKbChOlJkH66xtnboZpIxR 7UOZW0cKQTI+FC45/Mc6fisNXRR0xzCgbdKiP26mrIjS3ZOfXsLNOqP1yf9OkkZ9 j+viMnDvLhRluCqAkDNt7Dsl99yc7MBklng1szmw8hxgNe0HUXv3Ks87dQj2o9mc M6+doFwICMyFx9FRaas= =4S0z -----END PGP SIGNATURE-----