Publishing details

• Published on 2023-10-17
• Copied from ubuntu lunar in PPA for Ubuntu Security Proposed

Changelog

golang-1.20 (1.20.3-1ubuntu0.1) lunar-security; urgency=medium

  * SECURITY UPDATE: html injection vulnerability
    - debian/patches/CVE-2023-24539.patch: disallow angle brackets in CSS
      values
    - debian/patches/CVE-2023-29400.patch: emit filterFailsafe for empty
      unquoted attr value
    - CVE-2023-24539
    - CVE-2023-29400
  * SECURITY UPDATE: javascript injection vulnerability
    - debian/patches/CVE-2023-24540.patch: handle all JS whitespace
      characters
    - CVE-2023-24540

 -- Nishit Majithia <email address hidden>  Wed, 31 May 2023 17:28:05 +0530

Builds

• amd64
• arm64
• armhf
• ppc64el
• riscv64
• s390x

Package files

• golang-1.20_1.20.3-1ubuntu0.1.debian.tar.xz (38.8 KiB)
• golang-1.20_1.20.3-1ubuntu0.1.dsc (2.8 KiB)
• golang-1.20_1.20.3.orig.tar.gz (25.0 MiB)
• golang-1.20_1.20.3.orig.tar.gz.asc (819 bytes)