Register | Log in

golang-golang-x-net-dev

Supplementary Go networking libraries

Choose email to subscribe with

general

source: golang-golang-x-net-dev (main)
version: 1:0.0+git20181201.351d144+dfsg-2
maintainer: Debian Go Packaging Team [DMD]
uploaders: Martín Ferrari [DMD] – Anthony Fok [DMD] – Michael Stapelberg [DMD] – Tim Potter [DMD]
arch: all
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

old-bpo: 1:0.0+git20161013.8b4af36+dfsg-3~bpo8+2
stable: 1:0.0+git20161013.8b4af36+dfsg-3
stable-bpo: 1:0.0+git20180124.0ed95ab+dfsg-1~bpo9+1
testing: 1:0.0+git20181201.351d144+dfsg-2
unstable: 1:0.0+git20181201.351d144+dfsg-2

versioned links

1:0.0+git20161013.8b4af36+dfsg-3~bpo8+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:0.0+git20161013.8b4af36+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:0.0+git20180124.0ed95ab+dfsg-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:0.0+git20181201.351d144+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

golang-go.net-dev
golang-golang-x-net-dev

action needed

3 security issues in sid high

There are 3 open security issues in sid.

3 important issues:

CVE-2018-17846: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <table><math><select><mi><select></table>, leading to an infinite loop during an html.Parse call because inSelectIM and inSelectInTableIM do not comply with a specification.
CVE-2018-17847: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <svg><template><desc><t><svg></template>, leading to a "panic: runtime error" (index out of range) in (*nodeStack).pop in node.go, called from (*parser).clearActiveFormattingElements, during an html.Parse call.
CVE-2018-17848: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <math><template><mn><b></template>, leading to a "panic: runtime error" (index out of range) in (*insertionModeStack).pop in node.go, called from inHeadIM, during an html.Parse call.

Please fix them.

Created: 2018-10-16 Last update: 2018-12-19 04:13

3 security issues in buster high

There are 3 open security issues in buster.

3 important issues:

CVE-2018-17846: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <table><math><select><mi><select></table>, leading to an infinite loop during an html.Parse call because inSelectIM and inSelectInTableIM do not comply with a specification.
CVE-2018-17847: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <svg><template><desc><t><svg></template>, leading to a "panic: runtime error" (index out of range) in (*nodeStack).pop in node.go, called from (*parser).clearActiveFormattingElements, during an html.Parse call.
CVE-2018-17848: The html package (aka x/net/html) through 2018-09-25 in Go mishandles <math><template><mn><b></template>, leading to a "panic: runtime error" (index out of range) in (*insertionModeStack).pop in node.go, called from inHeadIM, during an html.Parse call.

Please fix them.

Created: 2018-10-16 Last update: 2018-12-19 04:13

1 new commit since last upload, time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit ad302e188a89d3f2fd695a16ab0661c1ba0b0201
Author: Anthony Fok <foka@debian.org>
Date:   Wed Jan 2 01:54:01 2019 -0700

    Build-depend on dh-golang (>= 1.31~) for handling testdata/*
    
    The DH_GOLANG_INSTALL_EXTRA variable for installing testdata directories
    is no longer necessary and thus removed from debian/rules.

Created: 2019-01-02 Last update: 2019-02-23 08:40

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.3.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2018-12-23 17:15

news

[2018-12-19] golang-golang-x-net-dev 1:0.0+git20181201.351d144+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-12-17] Accepted golang-golang-x-net-dev 1:0.0+git20181201.351d144+dfsg-2 (source) into unstable (Martín Ferrari)
[2018-12-08] golang-golang-x-net-dev 1:0.0+git20181201.351d144+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-12-05] Accepted golang-golang-x-net-dev 1:0.0+git20181201.351d144+dfsg-1 (source) into unstable (Dr. Tobias Quathamer)
[2018-07-11] golang-golang-x-net-dev 1:0.0+git20180124.0ed95ab+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-07-09] Accepted golang-golang-x-net-dev 1:0.0+git20180124.0ed95ab+dfsg-2 (source) into unstable (Dmitry Smirnov)
[2018-04-09] Accepted golang-golang-x-net-dev 1:0.0+git20180124.0ed95ab+dfsg-1~bpo9+1 (source all) into stretch-backports (Martín Ferrari)
[2018-04-08] golang-golang-x-net-dev 1:0.0+git20180124.0ed95ab+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-04-03] Accepted golang-golang-x-net-dev 1:0.0+git20180124.0ed95ab+dfsg-1 (source all) into unstable (Anthony Fok)
[2018-01-12] golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-01-09] Accepted golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-2 (source all) into unstable (Martín Ferrari)
[2017-12-30] Accepted golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-1~bpo9+1 (source all) into stretch-backports, stretch-backports (Martín Ferrari)
[2017-07-04] golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-1 MIGRATED to testing (Debian testing watch)
[2017-06-29] Accepted golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-1 (source all) into unstable (Anthony Fok)
[2017-02-17] Accepted golang-golang-x-net-dev 1:0.0+git20161013.8b4af36+dfsg-3~bpo8+2 (source all) into jessie-backports (Martín Ferrari)
[2017-02-13] Accepted golang-golang-x-net-dev 1:0.0+git20161013.8b4af36+dfsg-3~bpo8+1 (source all) into jessie-backports (Martín Ferrari)
[2016-10-21] golang-golang-x-net-dev 1:0.0+git20161013.8b4af36+dfsg-3 MIGRATED to testing (Debian testing watch)
[2016-10-15] Accepted golang-golang-x-net-dev 1:0.0+git20161013.8b4af36+dfsg-3 (source all) into unstable (Anthony Fok)
[2016-06-14] golang-golang-x-net-dev 1:0.0+git20160518.b3e9c8f+dfsg-2 MIGRATED to testing (Debian testing watch)
[2016-06-14] Accepted golang-golang-x-net-dev 1:0.0+git20160518.b3e9c8f+dfsg-1~bpo8+1 (source all) into jessie-backports (Martín Ferrari)
[2016-06-08] Accepted golang-golang-x-net-dev 1:0.0+git20160518.b3e9c8f+dfsg-2 (source all) into unstable (Anthony Fok)
[2016-06-01] golang-golang-x-net-dev 1:0.0+git20160518.b3e9c8f+dfsg-1 MIGRATED to testing (Debian testing watch)
[2016-05-29] Accepted golang-golang-x-net-dev 1:0.0+git20160428.35ec611+dfsg-1~bpo8+1 (source all) into jessie-backports (Martín Ferrari)
[2016-05-26] Accepted golang-golang-x-net-dev 1:0.0+git20160518.b3e9c8f+dfsg-1 (source all) into unstable (Martín Ferrari)
[2016-05-07] golang-golang-x-net-dev 1:0.0+git20160428.35ec611+dfsg-1 MIGRATED to testing (Debian testing watch)
[2016-05-01] Accepted golang-golang-x-net-dev 1:0.0+git20160428.35ec611+dfsg-1 (source all) into unstable (Martín Ferrari)
[2016-02-12] golang-golang-x-net-dev 1:0.0+git20160110.4fd4a9f-1 MIGRATED to testing (Debian testing watch)
[2016-02-06] Accepted golang-golang-x-net-dev 1:0.0+git20160110.4fd4a9f-1 (source all) into unstable (Tim Potter) (signed by: Dmitry Smirnov)
[2015-12-11] golang-golang-x-net-dev 1:0.0+git20150817.66f0418-1 MIGRATED to testing (Debian testing watch)
[2015-12-05] Accepted golang-golang-x-net-dev 1:0.0+git20150817.66f0418-1 (source) into unstable (Tianon Gravi)

1
2

bugs [bug history graph]

all: 2
RC: 0
I&N: 2
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:0.0+git20180124.0ed95ab+dfsg-2

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing