-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 17 Jan 2023 08:51:18 -0700 Source: golang-1.18 Architecture: source Version: 1.18.10-1~bpo11+1 Distribution: bullseye-backports Urgency: medium Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org> Changed-By: Anthony Fok <foka@debian.org> Changes: golang-1.18 (1.18.10-1~bpo11+1) bullseye-backports; urgency=medium . * Rebuild for bullseye-backports. . golang-1.18 (1.18.10-1) unstable; urgency=medium . * Team upload. * New upstream version 1.18.10 * Add NO_PNG_PKG_MANGLE to prevent mangling testdata. This is Ubuntu specific behaviour so they can sync the package without vendor patch. . golang-1.18 (1.18.9-1) unstable; urgency=medium . * New upstream version 1.18.9 + CVE-2022-41720: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows + CVE-2022-41717: net/http: limit canonical header cache by bytes, not entries Checksums-Sha1: 05f8af0c7d99afd19b0e6fb42cf9af826edabb8f 2903 golang-1.18_1.18.10-1~bpo11+1.dsc f7e319f316297dcf4cab45c6245288af1b6227cc 42500 golang-1.18_1.18.10-1~bpo11+1.debian.tar.xz 34143c6195b6bde11adb84dabde06b78fc6c9442 7206 golang-1.18_1.18.10-1~bpo11+1_amd64.buildinfo Checksums-Sha256: 3ca2192a91f4661096f0c3282f212a0a044e864c2750fa65de96aa648d31c24d 2903 golang-1.18_1.18.10-1~bpo11+1.dsc 57fd688d729aba2fac3cfa8833bda8004aebed4c6e0460614896c2b9ca710176 42500 golang-1.18_1.18.10-1~bpo11+1.debian.tar.xz cc392507e62af1ff3c9831269780fa01a2cfed41aa9d095619c2d8d6175e3cc0 7206 golang-1.18_1.18.10-1~bpo11+1_amd64.buildinfo Files: f4919ae401c5b44f084a095f9555f797 2903 golang optional golang-1.18_1.18.10-1~bpo11+1.dsc 4a108830bf0d601b8df8dec5c7d5fdb4 42500 golang optional golang-1.18_1.18.10-1~bpo11+1.debian.tar.xz f26ece3a04de8ea2be496e684f354290 7206 golang optional golang-1.18_1.18.10-1~bpo11+1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEEFCQhsZrUqVmW+VBy6iUAtBLFms8FAmPGyscQHGZva2FAZGVi aWFuLm9yZwAKCRDqJQC0EsWaz0svD/9RilnnNZvOZ+bNRXsKWJkztt2HPUJQtZez FzzDGHOzn/IBuzckIsgBA4OgzMDkebWeUzLew+K0UutwmOZSUVvyeaIGEZWP7gqq bM6mEZ39tEYXbr0JXLhQidIsHlWTuBaGW9EKp7qvXMCqxf8zE/ny+ugzGsYxToDK Sg33ShliAfslnDxVxLaEKQunjMdx+n/wPMbrMJnLiy6iI7+2w7yRdeKDvuurzF7t V/dIT0h6cINGUWDmoa7+kVZtQs4Qtz0kYMbr9esKbGlsj+8JdjlfEJFufmECXnU+ /bolYTYRgGfufwxAoLBfYUYu0R9tX4PNrhWuSgKNVzkqc7nVn+nOe4wzxYF6YCrV sMaw1n7D9kaio52YLQP+ew9xLRDQN91E4mtf5p5iKgPRWAECVXC5JnFuQdguNUU+ 9XUMRXCmFYo9VX2Ta11HILxrMn4ordsbTBWmQNt0zJk5grduFiMpaguOeZSHirV0 vayEAqQW0hzk7Oxb64fy/3aWE/LFfY8D14P6H7pJvWosz+24aaIcD7iZuQ+TVUYh dJzFIs+EOARytwX/dPdvsj7x3oR34iFkqeOKoAkQLf0EirIsPm9DrNypo7fB5QAe QU5bxPCy0cPi5JujOSeit6RRPaqzzJ3kCTdDGY/oiufg8n7Vd+hpCDkUCDrm7azY +z+vU27Rgw== =RMZ5 -----END PGP SIGNATURE-----