-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-8f7bca960b 2017-10-19 13:40:24.406502 --------------------------------------------------------------------------------
Name : golang Product : Fedora 25 Version : 1.7.6 Release : 3.fc25 URL : http://golang.org/ Summary : The Go Programming Language Description : The Go Programming Language.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2017-15041 and CVE-2017-15042 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1498870 - CVE-2017-15041 golang: arbitrary code execution during ���go get��� or ���go get -d��� https://bugzilla.redhat.com/show_bug.cgi?id=1498870 [ 2 ] Bug #1498867 - CVE-2017-15042 golang: smtp.PlainAuth susceptible to man-in-the-middle password harvesting https://bugzilla.redhat.com/show_bug.cgi?id=1498867 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade golang' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
package-announce@lists.fedoraproject.org