-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-9cd1204ba0 2020-07-30 17:50:12.727698 --------------------------------------------------------------------------------
Name : golang Product : Fedora 32 Version : 1.14.6 Release : 1.fc32 URL : http://golang.org/ Summary : The Go Programming Language Description : The Go Programming Language.
-------------------------------------------------------------------------------- Update Information:
* Rebase to go1.14.6 * Security fix for CVE-2020-15586 ---- Rebase to go 1.14.4 -------------------------------------------------------------------------------- ChangeLog:
* Mon Jul 20 2020 Jakub ��ajka jcajka@redhat.com - 1.14.6-1 - Rebase to go1.14.6 - Security fix for CVE-2020-14040 and CVE-2020-15586 - Resolves: BZ#1842708, BZ#1856957, BZ#1853653 * Tue Jun 30 2020 Alejandro S��ez asm@redhat.com - 1.14.4-1 - Rebase to go1.14.4 - Add patch that fixes: https://golang.org/issue/39991 - Related: BZ#1842708 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1856953 - CVE-2020-15586 golang: data race in certain net/http servers including ReverseProxy can lead to DoS https://bugzilla.redhat.com/show_bug.cgi?id=1856953 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-9cd1204ba0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------