]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
go: Security fix for CVE-2023-24538
authorShubham Kulkarni <skulkarni@mvista.com>
Tue, 2 May 2023 16:10:12 +0000 (21:40 +0530)
committerSteve Sakoman <steve@sakoman.com>
Wed, 3 May 2023 22:36:56 +0000 (12:36 -1000)
commitc8a597b76505dab7649f4c9b18e1e14b0e3d57af
treed512c91b687656f9857b6ae304a5bb7f88ed0ab2
parentfd4cc8d7b5156c43d162a1a5a809fae507457ef4
go: Security fix for CVE-2023-24538

html/template: disallow actions in JS template literals

Backport from https://github.com/golang/go/commit/b1e3ecfa06b67014429a197ec5e134ce4303ad9b

Signed-off-by: Shubham Kulkarni <skulkarni@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-devtools/go/go-1.14.inc
meta/recipes-devtools/go/go-1.14/CVE-2023-24538-1.patch [new file with mode: 0644]
meta/recipes-devtools/go/go-1.14/CVE-2023-24538-2.patch [new file with mode: 0644]
meta/recipes-devtools/go/go-1.14/CVE-2023-24538-3.patch [new file with mode: 0644]