rpms/toolbox
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Bump the golang requirement to ensure recent CVE fixes

Browse Source 
'BuildRequires: golang >= 1.19.4' will ensure that recent CVEs like
CVE-2022-41717 remain fixed.

There's no need to do a build just for this, because the toolbox package
has either already been built with a sufficiently recent golang or will
soon be.

https://bugzilla.redhat.com/show_bug.cgi?id=2161274
This commit is contained in:
Debarshi Ray 2023-02-22 20:29:43 +01:00
parent fbfe9ff31b
commit 7556bb66c2
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
toolbox.spec
View File

@ -30,7 +30,7 @@ Patch103: toolbox-cmd-root-Work-around-Cobra-1.1.2-s-handling-of-usage.patc
BuildRequires: gcc BuildRequires: gcc
BuildRequires: go-md2man BuildRequires: go-md2man
BuildRequires: golang >= 1.13 BuildRequires: golang >= 1.19.4
%if ! 0%{?rhel} %if ! 0%{?rhel}
BuildRequires: golang(github.com/HarryMichal/go-version) BuildRequires: golang(github.com/HarryMichal/go-version)
BuildRequires: golang(github.com/acobaugh/osrelease) BuildRequires: golang(github.com/acobaugh/osrelease)