-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 12 Oct 2021 01:46:18 -0600 Source: golang-1.17 Architecture: source Version: 1.17.2-1~bpo11+1 Distribution: bullseye-backports Urgency: medium Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org> Changed-By: Anthony Fok <foka@debian.org> Changes: golang-1.17 (1.17.2-1~bpo11+1) bullseye-backports; urgency=medium . * Rebuild for bullseye-backports. . golang-1.17 (1.17.2-1) unstable; urgency=medium . * Team upload. . [ Anthony Fok ] * Fix Lintian warning: tab-in-license-text debian/copyright (starting at line 366) . [ Shengjing Zhu ] * Ensure GOROOT_BOOTSTRAP is valid * Set GOPATH in d/rules. Seems the go command needs GOPATH env * New upstream version 1.17.2 + CVE-2021-38297: When invoking functions from WASM modules, built using GOARCH=wasm GOOS=js, passing very large arguments can cause portions of the module to be overwritten with data from the arguments Checksums-Sha1: a59ae25b0b77256831a8ee569197b454c216d6b1 2896 golang-1.17_1.17.2-1~bpo11+1.dsc 57c94d1180d573c54d2667729a3708a73c4074bd 38964 golang-1.17_1.17.2-1~bpo11+1.debian.tar.xz 78a70058a977cdca55fd9b111c92e29789870282 6990 golang-1.17_1.17.2-1~bpo11+1_amd64.buildinfo Checksums-Sha256: facbd8eca1d1c15d7da38f2edd0f404e5370a5fed33b9b3bc4daf558aa05f1d5 2896 golang-1.17_1.17.2-1~bpo11+1.dsc 46d93c8df4315d1ea22eca14dd45ec93c07d10b0a793129bfab39249c77c805f 38964 golang-1.17_1.17.2-1~bpo11+1.debian.tar.xz 4251c997603589675996130a93fe3f381b8028be327fad3f9c248d84e7e36223 6990 golang-1.17_1.17.2-1~bpo11+1_amd64.buildinfo Files: e8067c434362a3c36a20af1f569c5012 2896 golang optional golang-1.17_1.17.2-1~bpo11+1.dsc b7cfa07c2fe0b616ae2bbc0498fcae48 38964 golang optional golang-1.17_1.17.2-1~bpo11+1.debian.tar.xz 61ffa027b48a92ffdc79b1c896d69fd7 6990 golang optional golang-1.17_1.17.2-1~bpo11+1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEEFCQhsZrUqVmW+VBy6iUAtBLFms8FAmFlQ7YQHGZva2FAZGVi aWFuLm9yZwAKCRDqJQC0EsWaz/HVD/4okv5x1wm6rx/GUwuZZO2hQ5oNbb0R9gbg HPaclebvN8neamZE3UpyrJpz0AzpsfLgHC5EIE+rkn58Qf2MPjd9zrPRNzUfls0w Py6+XfDxwAkK3QPtNsVId1S2MURNrxYyPyD6VhW3LT4eFe5iae+aVcf43dd3OQIR 08LORmN0eqlbiGhJnAfaJ1OkuZFrC+mJokMoILP1USLKsOFs99N4x9poZVlH4DHI seL/NABAuPB50JWruph/hKN8NDsu9R67Xrbvx5ZCvcwpCgl5vvGCGegvGYPeY5sJ 1Rd/TvKaBz2yIA3QPqUDTa+6lJfc3QJ00V/areO2nHV3GqC/PXS8L7GrHeSOjC6l tP0Yvkotav6SoAJ2QslSOQrEbcOXBRxbfdThGM/f2yOPoIUY/QqR0Aususim9vEI g9UNb9G6NtbVCcvbn/8MPcs4/xtpb9oPRafcjMIBkldi2UFYO/b2+Czfzhse8xnL RO65oWBYqlZqxvMRgwWjR4wAukSQWrhPMug1Z+6cs5J3PrFTnCyxvAy7xdhd/xql eXtEPxlA/X/xUZW+KD1IqsQjL2y2XccUeDRHhIGDdFp7uhCBvRURftb/g6GZyLxV q8hm6Z28gXp50aOUP8qEL9Ox4etYB1f5nHEoHEMHwR7qZsu+JcQtoGOxscKocBRI g7TJyAfZQA== =PgYg -----END PGP SIGNATURE-----