Sync golang-1.21 1.21.1-1 (main) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
golang-1.21 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Please sync golang-1.21 1.21.1-1 (main) from Debian unstable (main)
Changelog entries since current mantic version 1.21.0-1:
golang-1.21 (1.21.1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.1
+ CVE-2023-39320: cmd/go: go.mod toolchain directive allows arbitrary
execution
+ CVE-2023-39318: html/template: improper handling of HTML-like comments
within script contexts
+ CVE-2023-39319: html/template: improper handling of special tags within
script contexts
+ CVE-2023-
post-
-- Shengjing Zhu <email address hidden> Thu, 07 Sep 2023 11:51:55 +0800
Changed in golang-1.21 (Ubuntu): | |
importance: | Undecided → Wishlist |
1.21.1-1 is already in mantic-proposed.