Skip to content

Commit

Permalink
[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade msft-golang to 1.22.8 To…
Browse files Browse the repository at this point in the history 
… fix CVE-2022-41717 - branch main (#10834)
  • Loading branch information
@CBL-Mariner-Bot
CBL-Mariner-Bot authored Oct 25, 2024
1 parent 4401d89 commit 3eb66d1
Show file tree
Hide file tree
Showing 3 changed files with 8 additions and 5 deletions.
2 changes: 1 addition & 1 deletion SPECS/msft-golang/msft-golang.signatures.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
"Signatures": {
"go.20230802.5.src.tar.gz": "56b9e0e0c3c13ca95d5efa6de4e7d49a9d190eca77919beff99d33cd3fa74e95",
"go.20240206.2.src.tar.gz": "7982e0011aa9ab95fd0530404060410af4ba57326d26818690f334fdcb6451cd",
"go1.22.7-20240905.3.src.tar.gz": "4c2601d9fe6b4692b6bb4487751dec149c30bd76ad9383331a84971a66bdd0bc",
"go1.22.8-20241001.6.src.tar.gz": "549a43643849c73ffd8579d63e2e3488428f0a4c436169abe02be01a3dbd41c8",
"go1.4-bootstrap-20171003.tar.gz": "f4ff5b5eb3a3cae1c993723f3eab519c5bae18866b5e5f96fe1102f0cb5c3e52"
}
}
7 changes: 5 additions & 2 deletions SPECS/msft-golang/msft-golang.spec
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
%global goroot %{_libdir}/golang
%global gopath %{_datadir}/gocode
%global ms_go_filename go1.22.7-20240905.3.src.tar.gz
%global ms_go_filename go1.22.8-20241001.6.src.tar.gz
%global ms_go_revision 1
%ifarch aarch64
%global gohostarch arm64
Expand All @@ -14,7 +14,7 @@
%define __find_requires %{nil}
Summary: Go
Name: msft-golang
Version: 1.22.7
Version: 1.22.8
Release: 1%{?dist}
License: BSD
Vendor: Microsoft Corporation
Expand Down Expand Up @@ -153,6 +153,9 @@ fi
%{_bindir}/*

%changelog
* Thu Oct 24 2024 CBL-Mariner Servicing Account <[email protected]> - 1.22.8-1
- Auto-upgrade to 1.22.8 - To fix CVE-2022-41717

* Mon Sep 09 2024 Henry Beberman <[email protected]> - 1.22.7-1
- Bump version to 1.22.7 to address CVE-2024-34158, CVE-2024-34156, CVE-2024-34155

Expand Down
4 changes: 2 additions & 2 deletions cgmanifest.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13673,8 +13673,8 @@
"type": "other",
"other": {
"name": "msft-golang",
"version": "1.22.7",
"downloadUrl": "https://github.com/microsoft/go/releases/download/v1.22.7-1/go1.22.7-20240905.3.src.tar.gz"
"version": "1.22.8",
"downloadUrl": "https://github.com/microsoft/go/releases/download/v1.22.8-1/go1.22.8-20241001.6.src.tar.gz"
}
}
},
Expand Down

0 comments on commit 3eb66d1

Please sign in to comment.