[ubuntu/bionic-updates] golang-x-text 0.0~git20170627.0.6353ef0-1ubuntu2.1 (Accepted)

Ubuntu Archive Robot ubuntu-archive-robot at lists.canonical.com
Thu Feb 16 10:28:15 UTC 2023


golang-x-text (0.0~git20170627.0.6353ef0-1ubuntu2.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Denial of Service (crash)
    - debian/patches/CVE-2020-14040.patch: encoding/unicode: correctly
    handle single-byte UTF-16 inputs (and harden transform.String)
    - debian/patches/CVE-2020-28852.patch: internal/language: fix
    resizeRange index wrong way
    - debian/patches/CVE-2020-28851.patch: language: allow variable
    number of types per key in -u- extension
    - debian/patches/CVE-2021-38561.patch: language: turn parsing panics
    into ErrSyntax
    - debian/patches/CVE-2022-32149.patch: language: reject excessively
    large Accept-Language strings
    - CVE-2020-14040
    - CVE-2020-28852
    - CVE-2020-28851 
    - CVE-2021-38561
    - CVE-2022-32149

Date: 2023-01-12 16:37:10.729890+00:00
Changed-By: Eduardo Barretto <eduardo.barretto at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/golang-x-text/0.0~git20170627.0.6353ef0-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list