diff --git a/.gitignore b/.gitignore index a7a29cb..03dd2ae 100644 --- a/.gitignore +++ b/.gitignore @@ -1 +1 @@ -SOURCES/go1.11-5-openssl-fips.tar.gz +SOURCES/go-go-1.11.13-2-openssl-fips.tar.gz diff --git a/.golang.metadata b/.golang.metadata index 2aca6c3..a3b773e 100644 --- a/.golang.metadata +++ b/.golang.metadata @@ -1 +1 @@ -5d619fca07ff3aa6a71988d8b19f78fa5e7394c2 SOURCES/go1.11-5-openssl-fips.tar.gz +0120364194243a58264be175fd2e15d7b89abace SOURCES/go-go-1.11.13-2-openssl-fips.tar.gz diff --git a/SPECS/golang.spec b/SPECS/golang.spec index b9b2b00..79a9f84 100644 --- a/SPECS/golang.spec +++ b/SPECS/golang.spec @@ -96,17 +96,17 @@ %global gohostarch s390x %endif -%global go_api 1.11.6 -%global go_version 1.11.6 +%global go_api 1.11.13 +%global go_version 1.11.13 Name: golang -Version: 1.11.6 -Release: 1%{?dist} +Version: 1.11.13 +Release: 2%{?dist} Summary: The Go Programming Language # source tree includes several copies of Mark.Twain-Tom.Sawyer.txt under Public Domain License: BSD and Public Domain URL: http://golang.org/ -Source0: http://releases.pagure.org/go/go1.11-5-openssl-fips.tar.gz +Source0: https://pagure.io/go/archive/go-1.11.13-2-openssl-fips/go-go-1.11.13-2-openssl-fips.tar.gz # make possible to override default traceback level at build time by setting build tag rpm_crashtraceback Source1: fedora.go Source2: golang.macros @@ -228,7 +228,7 @@ Requires: %{name} = %{version}-%{release} %endif %prep -%setup -q -n go1.11-openssl-fips +%setup -q -n go-go-1.11.13-2-openssl-fips %patch215 -p1 @@ -509,6 +509,21 @@ cd .. %endif %changelog +* Thu Aug 22 2019 Tom Stellard - 1.11.13-2 +- Improve error message when using non-FIPS API in FIPS mode. +- Fixes CVE-2019-9512. +- Fixes CVE-2019-9514. +- Resolves: rhbz#1745711 +- Resolves: rhbz#1745705 + +* Thu Aug 1 2019 Derek Parker - 1.11.6-3 +- Updates to be less strict on key size in FIPS mode +- Resolves: rhbz#1731550 + +* Wed May 29 2019 Derek Parker - 1.11.6-2 +- Lock to specific OpenSSL version on build +- Resolves: rhbz#1709606 + * Fri May 17 2019 Derek Parker - 1.11.6-1 - Rebase to Go 1.11.6 and include FIPS lab feedback - Resolves: rhbz#1709606