From 14d6400711a57c307c5cdbc15e964e4cb7914ead Mon Sep 17 00:00:00 2001 From: Archana Date: Wed, 21 Aug 2024 21:15:59 +0530 Subject: [PATCH] - Update to Go1.21.13 to fix CVE-2024-24791 - Resolves: RHEL-47198 --- .gitignore | 2 ++ golang.spec | 6 +++++- sources | 4 ++-- 3 files changed, 9 insertions(+), 3 deletions(-) diff --git a/.gitignore b/.gitignore index b60208e..96a0ec6 100644 --- a/.gitignore +++ b/.gitignore @@ -20,3 +20,5 @@ SOURCES/go1.19.4.tar.gz /go1.21.10-1-openssl-fips.tar.gz /go1.21.11.tar.gz /go1.21.11-1-openssl-fips.tar.gz +/go1.21.13.tar.gz +/go1.21.13-1-openssl-fips.tar.gz diff --git a/golang.spec b/golang.spec index 94e9ad2..2f0c84e 100644 --- a/golang.spec +++ b/golang.spec @@ -92,7 +92,7 @@ %endif %global go_api 1.21 -%global version 1.21.11 +%global version 1.21.13 %global pkg_release 1 Name: golang @@ -520,6 +520,10 @@ cd .. %endif %changelog +* Wed Aug 21 2024 Archana - 1.21.13-1 +- Update to Go1.21.13 to fix CVE-2024-24791 +- Resolves: RHEL-47198 + * Wed Jun 12 2024 Archana Ravindar - 1.21.11-1 - Update to Go1.21.11 to address CVE-2024-24789 and CVE-2024-24790 - Resolves: RHEL-40274 diff --git a/sources b/sources index b460749..c8d7bbd 100644 --- a/sources +++ b/sources @@ -1,2 +1,2 @@ -SHA512 (go1.21.11-1-openssl-fips.tar.gz) = e64287df6de7f25f5bd20fa68e81620e6c4fc8e87809c20febaac7bffa4200ceda68b4d3b0c6db8668a19c144a82cf757259b2e6a2dda2c4a22720bc5cff40f6 -SHA512 (go1.21.11.tar.gz) = a1f73eb109578b0965229fd2a263b1d5955f4673293d5884bb5dc51e57a3ba11061a98fcfc432498d8659a0f56ef84e6ca0a723c75556ca04ac91993f489f780 +SHA512 (go1.21.13.tar.gz) = 1b26c7cbe4862a3a48f3c48418a43b6c946493b6673eae9eb6652b37a4114727c9c2271ee95da00c20db39292288af953f56da2b33e03d64ed1e26d90250cd05 +SHA512 (go1.21.13-1-openssl-fips.tar.gz) = 6c9137fb9bfccf44f1a3984cf07082799160d234fdc7ff588367bf2fc192d2271d81715d8f18a7679e810c7e4b2b4f8efd7779ac394ff607c6cc67572395d289