github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
b7b1200dd3
containerd/script
History
Daniel Canter e1c5d71c0c Update golang to 1.18.5, 1.17.13 
Update Go runtime to 1.18.5 to address CVE-2022-32189.

Full diff:
https://github.com/golang/go/compare/go1.18.4...go1.18.5

--------------------------------------------------------

From the security announcement:
https://groups.google.com/g/golang-announce/c/YqYYG87xB10

We have just released Go versions 1.18.5 and 1.17.13, minor point
releases.

These minor releases include 1 security fixes following the security
policy:

encoding/gob & math/big: decoding big.Float and big.Rat can panic

Decoding big.Float and big.Rat types can panic if the encoded message is
too short.

This is CVE-2022-32189 and Go issue https://go.dev/issue/53871.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.18.5

Signed-off-by: Daniel Canter <dcanter@microsoft.com>
2022-08-02 11:54:45 -07:00
..
setup Update golang to 1.18.5, 1.17.13 2022-08-02 11:54:45 -07:00
test integration: Add injected failpoint testing for RunPodSandbox 2022-07-22 23:25:40 +08:00
go-test-fuzz.sh Run fuzzing tests with go test -fuzz 2022-06-15 16:23:37 +00:00
resize-vagrant-root.sh Move Vagrant-based tests from GitHub Actions to Cirrus CI 2022-04-26 17:18:19 +00:00
verify-go-modules.sh fix verify-vendor if go.mod does not contain replace rules 2022-05-27 12:57:12 +02:00