AlmaLinux 2324 Published by

A go-toolset:rhel8 security and bug fix update has been released for AlmaLinux 8.



ALSA-2023:3083 Moderate: go-toolset:rhel8 security and bug fix update


Type:
security

Severity:
moderate

Release date:
2023-05-19

Description
Security Fix(es):
* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)
* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Backport fix for https://github.com/golang/go/issues/56891 (BZ#2167412)
* Update Go to 1.19.6 (BZ#2174430)

References:
RHSA-2023:3083
CVE-2022-41724
CVE-2022-41725
ALSA-2023:3083

Updates packages:
golang-src-1.19.6-1.module_el8.8.0+3558+75c9cb88.noarch.rpm
golang-docs-1.19.6-1.module_el8.8.0+3558+75c9cb88.noarch.rpm
golang-tests-1.19.6-1.module_el8.8.0+3558+75c9cb88.noarch.rpm
golang-misc-1.19.6-1.module_el8.8.0+3558+75c9cb88.noarch.rpm
golang-race-1.19.6-1.module_el8.8.0+3558+75c9cb88.x86_64.rpm
golang-bin-1.19.6-1.module_el8.8.0+3558+75c9cb88.x86_64.rpm
golang-1.19.6-1.module_el8.8.0+3558+75c9cb88.x86_64.rpm
go-toolset-1.19.6-1.module_el8.8.0+3558+75c9cb88.x86_64.rpm
delve-1.9.1-1.module_el8.8.0+3471+a62632a0.x86_64.rpm
golang-bin-1.19.6-1.module_el8.8.0+3558+75c9cb88.s390x.rpm
go-toolset-1.19.6-1.module_el8.8.0+3558+75c9cb88.s390x.rpm
golang-1.19.6-1.module_el8.8.0+3558+75c9cb88.s390x.rpm
golang-1.19.6-1.module_el8.8.0+3558+75c9cb88.aarch64.rpm
go-toolset-1.19.6-1.module_el8.8.0+3558+75c9cb88.aarch64.rpm
golang-bin-1.19.6-1.module_el8.8.0+3558+75c9cb88.aarch64.rpm
golang-bin-1.19.6-1.module_el8.8.0+3558+75c9cb88.ppc64le.rpm
go-toolset-1.19.6-1.module_el8.8.0+3558+75c9cb88.ppc64le.rpm
golang-1.19.6-1.module_el8.8.0+3558+75c9cb88.ppc64le.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:3083 Moderate: go-toolset:rhel8 security and bug fix update