[pkg-golang-devel] Bug#863292: Bug#863292: 1.8.3 includes a bugfix for CVE-2017-8932
Michael Hudson-Doyle
michael.hudson at canonical.com
Thu Jun 1 10:01:28 UTC 2017
On 1 June 2017 at 21:53, Hilko Bengen <bengen at debian.org> wrote:
> * Michael Hudson-Doyle:
>
> > Makes sense to me. If I upload to unstable, will you take care of the
> unblock request? :)
>
> Sure. :-)
>
Thanks :)
> BTW, golang-1.7 should be updated to 1.7.6, for the same issue, see
> #863308.
>
Yeah, I just uploaded that too. Presumably all the things that have older
versions of golang-1.7 in Built-Using need a no-change NMU[0]? I can't
easily do that as I'm not a DD (yet! Hoping to fix that soon).
Cheers,
mwh
[0] possibly to drop the Built-Using if it's an arch all -dev package...
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-golang-devel/attachments/20170601/bd6fbed2/attachment.html>
More information about the pkg-golang-devel
mailing list