SECURITY: Update Go to 1.8.2, fixing CVE-2017-8932,

carry bug in x86-64 P-256. A security-related issue was recently reported in Go's crypto/elliptic package. To address this issue, we have just released Go 1.7.6 and Go 1.8.2. The Go team would like to thank Vlad Krasnov and Filippo Valsorda at Cloudflare for reporting the issue and providing a fix. The issue affects Go's P-256 implementation on the 64-bit x86 architecture. This is CVE-2017-8932 and was addressed by this change: https://golang.org/cl/41070, tracked in this issue: https://golang.org/issue/20040
author: bsiegert <bsiegert> 2017-05-25 09:06:43 +0000
committer: bsiegert <bsiegert> 2017-05-25 09:06:43 +0000
commit: dcdf7715ae9e9bfeb5cc67a404dbd9ee5994833e (patch)
tree: aac5c451efd3bd34ca92c3c02716611d213b9395 /lang/go/version.mk
parent: edc6b97a8771643868b877f5525d0eaa39b6e63f (diff)
download: pkgsrc-dcdf7715ae9e9bfeb5cc67a404dbd9ee5994833e.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/lang/go/version.mk b/lang/go/version.mk
index dd5f9780160..bbed8c92fd7 100644
--- a/lang/go/version.mk
+++ b/lang/go/version.mk
@@ -1,8 +1,8 @@
-# $NetBSD: version.mk,v 1.25 2017/04/30 23:02:09 maya Exp $
+# $NetBSD: version.mk,v 1.26 2017/05/25 09:06:43 bsiegert Exp $
 
 .include "../../mk/bsd.prefs.mk"
 
-GO_VERSION=	1.8.1
+GO_VERSION=	1.8.2
 GO14_VERSION=	1.4.3
 
 ONLY_FOR_PLATFORM=	*-*-i386 *-*-x86_64 *-*-*arm*
author	bsiegert <bsiegert>	2017-05-25 09:06:43 +0000
committer	bsiegert <bsiegert>	2017-05-25 09:06:43 +0000
commit	dcdf7715ae9e9bfeb5cc67a404dbd9ee5994833e (patch)
tree	aac5c451efd3bd34ca92c3c02716611d213b9395 /lang/go/version.mk
parent	edc6b97a8771643868b877f5525d0eaa39b6e63f (diff)
download	pkgsrc-dcdf7715ae9e9bfeb5cc67a404dbd9ee5994833e.tar.gz