Overview

File _patchinfo of Package patchinfo.22069

<patchinfo incident="22069">
  <issue tracker="bnc" id="1193597">VUL-0: CVE-2021-44716: go1.16,go1.17: net/http: limit growth of header canonicalization cache</issue>
  <issue tracker="bnc" id="1193598">VUL-0: CVE-2021-44717: go1.16,go1.17: syscall: don't close fd 0 on ForkExec error</issue>
  <issue tracker="bnc" id="1182345">go1.16 release tracking</issue>
  <issue tracker="cve" id="2021-44717"/>
  <issue tracker="cve" id="2021-44716"/>
  <packager>jfkw</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for go1.16</summary>
  <description>This update for go1.16 fixes the following issues:

Updated to upstream version 1.16.12 to include security fixes to the compiler,
syscall, runtime, the net/http, net/http/httptest, and time packages (bsc#1182345)

- CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598).
- CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places