SUSE Package Hub - openSUSE-2019-482

Update Info

openSUSE-2019-482

Security update for go1.9

Type: security

Severity: moderate

Issued: 2019-03-23

Description:

This update for go1.9 fixes the following issues:

Security issues fixed:

- CVE-2018-7187: arbitrary command execution via VCS path (boo#1081495)

Non-security changes:

- Update to version 1.9.7
- fixes to the go command and compiler
- minimal support to the go command for the vgo transition

References

CVE: CVE-2018-7187
Bugzilla: 1081495 VUL-0: CVE-2018-7187: golang: arbitrary command execution via VCS path

Packages

go-1.9.7-19.1

go1.9-1.9.7-13.2