go_1_10: 1.10 -> 1.10.1, g_1_9: 1.9.4 -> 1.9.5 #38233
Merged
Commits on Mar 31, 2018
-
This updates go to the latest version of the golang 1.10 branch. A few minor (but important) things are fixed in this version: * CVE-2018-7187 - arbitrary code execution in `go get` (when used with --insecure) [1] * Extended Key Usage verification in client certificate scenarios [3] * a bunch of stability changes The full list of changes can se been on GitHub [2] & [4]. [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7187 [2] https://github.com/golang/go/issues?q=milestone%3AGo1.10.1 [3] golang/go#23884 [4] golang/go#24563
Commits on Apr 1, 2018
-
This is a maintenance bump of the golang 1.9 version. Within the updates are a few bug fixes including an (extended?) fix for CVE-2018-7187 [1]. The complete changelog is available at the golang GitHub project [2]. [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7187 [2] https://github.com/golang/go/issues?q=milestone%3AGo1.9.5
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.