-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-2ef35beebf 2021-12-16 01:16:25.569132 -------------------------------------------------------------------------------- Name : golang Product : Fedora 35 Version : 1.16.11 Release : 1.fc35 URL : http://golang.org/ Summary : The Go Programming Language Description : The Go Programming Language. -------------------------------------------------------------------------------- Update Information: Update to 1.16.11 Multiple CVE fixed ---- Update to go1.16.10 -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 7 2021 Alejandro S��ez <asm(a)redhat.com&gt; - 1.16.11-1 - Update to go1.16.11 - Related: rhbz#2020739 - Related: rhbz#2020728 - Related: rhbz#2014923 - Related: rhbz#2006045 * Fri Nov 12 2021 Alejandro S��ez <asm(a)redhat.com&gt; - 1.16.10-1 - Update to go1.16.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2014923 - CVE-2021-38297 golang: Command-line arguments may overwrite global data [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2014923 [ 2 ] Bug #2020728 - CVE-2021-41771 golang: debug/macho: invalid dynamic symbol table command can cause panic [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2020728 [ 3 ] Bug #2020739 - CVE-2021-41772 golang: archive/zip: Reader.Open panics on empty string [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2020739 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-2ef35beebf' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------