Overview

File _patchinfo of Package patchinfo.22062

<patchinfo incident="22062">
  <issue tracker="bnc" id="1193597">VUL-0: CVE-2021-44716: go1.16,go1.17: net/http: limit growth of header canonicalization cache</issue>
  <issue tracker="bnc" id="1193598">VUL-0: CVE-2021-44717: go1.16,go1.17: syscall: don't close fd 0 on ForkExec error</issue>
  <issue tracker="bnc" id="1190649">go1.17 release tracking</issue>
  <issue tracker="cve" id="2021-44716"/>
  <issue tracker="cve" id="2021-44717"/>
  <packager>jfkw</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for go1.17</summary>
  <description>This update for go1.17 fixes the following issues:

Updated to upstream version 1.17.5 to include fixes to the compiler, linker,
syscall, runtime, the net/http, go/types, and time packages (bsc#1190649)

- CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598).
- CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places