-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 12 Dec 2021 01:52:21 +0800 Source: golang-1.15 Architecture: source Version: 1.15.15-5 Distribution: unstable Urgency: medium Maintainer: Go Compiler Team <team+go-compiler@tracker.debian.org> Changed-By: Shengjing Zhu <zhsj@debian.org> Changes: golang-1.15 (1.15.15-5) unstable; urgency=medium . * Team upload. * Backport patch for CVE-2021-38297 When invoking functions from WASM modules, built using GOARCH=wasm GOOS=js, passing very large arguments can cause portions of the module to be overwritten with data from the arguments. * Backport patch for CVE-2021-41771 debug/macho: invalid dynamic symbol table command can cause panic * Backport patch for CVE-2021-44716 net/http: limit growth of header canonicalization cache * Backport patch for CVE-2021-44717 syscall: don’t close fd 0 on ForkExec error Checksums-Sha1: 594bc1ab8ec57b8773847b00cb8fd4aa714bdd02 2254 golang-1.15_1.15.15-5.dsc e13b359bfe9f035f83879bc94c31b4ddb6221e83 46160 golang-1.15_1.15.15-5.debian.tar.xz d368b03d397f2c8f3c0d46cf7f5a8477828c54d9 6162 golang-1.15_1.15.15-5_amd64.buildinfo Checksums-Sha256: 6fc7ecda82e9ff905d6a4f3a284e41fd4ea24423c72712f1fcb50ee9f2fb0e35 2254 golang-1.15_1.15.15-5.dsc d53d94615ee3709f89e6208d4736e86cc1136053753285973fb75467967b012f 46160 golang-1.15_1.15.15-5.debian.tar.xz e7ecaabcf20ac1bb7bfb326c5fe7cc9db30eb84e1db62f641d180e8078bda74e 6162 golang-1.15_1.15.15-5_amd64.buildinfo Files: 11ca9170a12ed8aa0bf82828a3520b28 2254 golang optional golang-1.15_1.15.15-5.dsc 8ee238b84a0cfaf82ab7c9339cd7d936 46160 golang optional golang-1.15_1.15.15-5.debian.tar.xz 8bfa7dc2189fbb14ff5ead9898d04cfc 6162 golang optional golang-1.15_1.15.15-5_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iIYEARYIAC4WIQSRhdT1d2eu7mxV1B5/RPol6lUUywUCYbTqBhAcemhzakBkZWJp YW4ub3JnAAoJEH9E+iXqVRTLhvEA/jz6SeE1CeVHgwnd8N1X+fysg5ikLMHSZ3Vv 8dAK9XCkAP9Eaw9+ExOVakGaWy7RDq0T71J0yhSp5IreVUQ1WYo8AA== =IAeR -----END PGP SIGNATURE-----