Updated golang packages fix security vulnerabilities: Go before 1.9.4 allows “go get” remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked (CVE-2018-6574).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 6 | noarch | golang | < 1.9.4-3 | golang-1.9.4-3.mga6 |