> I see no open bugs against `gosu` : > https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gosu , and > it needs to be confirmed that it's built against golang 1.17 > in `debian`. Not my expertise
gosu is built with golang-any and in Noble, that defaults to 1.22. I think golang-any should be patched for those vulnerabilities and therefore needs a no-change rebuild to fix all this. :)
> I see no open bugs against `gosu` : /bugs.debian. org/cgi- bin/pkgreport. cgi?src= gosu , and
> https:/
> it needs to be confirmed that it's built against golang 1.17
> in `debian`. Not my expertise
gosu is built with golang-any and in Noble, that defaults to 1.22. I think golang-any should be patched for those vulnerabilities and therefore needs a no-change rebuild to fix all this. :)