-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 08 Apr 2026 11:31:44 +0200
Source: golang-1.25
Architecture: source
Version: 1.25.9-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Compiler Team <team+go-compiler@tracker.debian.org>
Changed-By: Dr. Tobias Quathamer <toddy@debian.org>
Changes:
golang-1.25 (1.25.9-1) unstable; urgency=medium
.
* New upstream version 1.25.9
- Update Build-Depends on golang 1.25 or 1.24
- CVE-2026-32280
During chain building, the amount of work that is done is not
correctly limited when a large number of intermediate certificates
are passed in VerifyOptions.Intermediates, which can lead to a
denial of service. This affects both direct users of crypto/x509
and users of crypto/tls.
- CVE-2026-32281
Validating certificate chains which use policies is unexpectedly
inefficient when certificates in the chain contain a very large
number of policy mappings, possibly causing denial of service.
This only affects validation of otherwise trusted certificate
chains, issued by a root CA in the VerifyOptions.Roots CertPool,
or in the system certificate pool.
* Set Forwarded in patch headers
* Remove Priority: optional from d/control
* Remove Rules-Requires-Root from d/control
* Update Standards-Version to 4.7.4
* Use wrap-and-sort -astkb
* Add myself as uploader, somehow I got involved again. :-)
Checksums-Sha1:
a0fda0d0466eeecd30ab1ce7d43064698a70217e 2915 golang-1.25_1.25.9-1.dsc
83b6619a6b8247fae5321adbfe2d8fcff2230cd7 31997830 golang-1.25_1.25.9.orig.tar.gz
37ee74014a1eb36c22d2b6a2e4805a32769a526f 833 golang-1.25_1.25.9.orig.tar.gz.asc
65bd2c5aa84851e4cb8f86277c799c0b519cd0f5 46244 golang-1.25_1.25.9-1.debian.tar.xz
47f799d67cc1f7b9c8e97e3972bb45194aa44c02 6644 golang-1.25_1.25.9-1_amd64.buildinfo
Checksums-Sha256:
b8aed42df304171be65d401d4d0c02bea59567fea7b6d44b60d8998a4707b7b2 2915 golang-1.25_1.25.9-1.dsc
0ec9ef8ebcea097aac37decae9f09a7218b451cd96be7d6ed513d8e4bcf909cf 31997830 golang-1.25_1.25.9.orig.tar.gz
fe4f79c3a17bcff7b48a234786f9c0e87e862676851155f10f717a7e2bc74d32 833 golang-1.25_1.25.9.orig.tar.gz.asc
97b6d0aa43dbdb4f2374d05b311c50f5ec7ac73f9cbc7683894f9f553e6ac5c8 46244 golang-1.25_1.25.9-1.debian.tar.xz
2450d0cfa10220a41172423d00a9bfb4a0125772b46dcfd14a95c8c1eeee939c 6644 golang-1.25_1.25.9-1_amd64.buildinfo
Files:
ecf3604a43f854f5289cbaa784a64c95 2915 golang optional golang-1.25_1.25.9-1.dsc
99e257a6e4c1a43242832eb45452cc5a 31997830 golang optional golang-1.25_1.25.9.orig.tar.gz
900665f36752b07a3ef742b49e45179e 833 golang optional golang-1.25_1.25.9.orig.tar.gz.asc
8cc0599e58bcba08b5d3aa273cd748b2 46244 golang optional golang-1.25_1.25.9-1.debian.tar.xz
404b553bc9f62d83d337187c1d5a8b88 6644 golang optional golang-1.25_1.25.9-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=bHxl
-----END PGP SIGNATURE-----
