From nobody Fri Jun 14 01:43:50 2024
X-Original-To: go@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4W0hrk2r2nz5N4cd
	for <go@mlmmj.nyi.freebsd.org>; Fri, 14 Jun 2024 01:43:50 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4W0hrk0jXPz4ZCN
	for <go@FreeBSD.org>; Fri, 14 Jun 2024 01:43:50 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1718329430; a=rsa-sha256; cv=none;
	b=Ef2IWoTt75QkKBCqutIptZfL+hpRyiqf3E21LW1Mpdkymwj/Jm0apXMrVmPBwMQaRqhdQc
	6pkiOvU4/x3hTPH4VLS07RO8CrOx0gfb/wy6PcfwBXvD5rr2NIakPWl49Qx5ReaXou6SoC
	QoUK6YXGY1hvtf6UVblaVISg0TSjnmdYhxoE9ORzahTQAzRhIME3qg7nlq9KsiIFuiEyCu
	zFvQbr/KLU0AQofQkhapg+QkdJU/vpkkvXEx81Imks/o8FXpXJga3uNESrq8v2LNQqlZWP
	jdnz/uNCh2QqyANTvVbLBVjOJRxcR812yrFw8xrIfNKMjihzdsDO+5oMpLK5sQ==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1718329430;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=fqzQQ7Y93a+bYyb5CKTTEpXpmEvtrHCYjF5+46bMKy8=;
	b=Rtkg7wkqQ/LuPNspMi6ER32nG+XpZYwSKA4M8a6kkWy4WB/5bEGd09Z1NccAvdxSDBM+7q
	3nRQpVPEwBwwXv2LFjK0XQ3snSE76PY3UrSbBjwLdtcY8JCbI1XDlaTAoHQNoqsjuagKA4
	i0gQa7FUZZeN5U/2US0jNiepo6PT6KUnbKLrrA8EcvOG4WJw6qPukoeIbEFfh1gNB8rTj4
	dZQaUnjmVnL16+sauDaWMrvwI7JzdMJpOJzyAIBbuDg1naqiEYks4c6pDcZY/wL9ckMcsB
	z9A4RXlWI50QFxtkKay0y3jcLiMNFjdh0TzviZ+hbuvkE36NiKvYm/DxI2fsrA==
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4W0hrk0KB9z11Xq
	for <go@FreeBSD.org>; Fri, 14 Jun 2024 01:43:50 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 45E1hnso040571
	for <go@FreeBSD.org>; Fri, 14 Jun 2024 01:43:49 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 45E1hnIL040570
	for go@FreeBSD.org; Fri, 14 Jun 2024 01:43:49 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="UTF-8"
From: bugzilla-noreply@freebsd.org
To: go@FreeBSD.org
Subject: maintainer-feedback requested: [Bug 279724] lang/go122: 1.22.3_1 is
 vulnerable to multiple security issues
Date: Fri, 14 Jun 2024 01:43:50 +0000
X-Bugzilla-Type: request
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: 
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: go@FreeBSD.org
X-Bugzilla-Flags: maintainer-feedback?
Message-ID: <bug-279724-42334-5tdnc3ZNED@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-279724-42334@https.bugs.freebsd.org/bugzilla/>
References: <bug-279724-42334@https.bugs.freebsd.org/bugzilla/>
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Go language ports maintenance <freebsd-go.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-go
List-Help: <mailto:go+help@freebsd.org>
List-Post: <mailto:go@freebsd.org>
List-Subscribe: <mailto:go+subscribe@freebsd.org>
List-Unsubscribe: <mailto:go+unsubscribe@freebsd.org>
X-BeenThere: freebsd-go@freebsd.org
Sender: owner-freebsd-go@FreeBSD.org
MIME-Version: 1.0

Bugzilla Automation <bugzilla@FreeBSD.org> has asked Golang Team (Nobody)
<go@FreeBSD.org> for maintainer-feedback:
Bug 279724: lang/go122: 1.22.3_1 is vulnerable to multiple security issues
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D279724



--- Description ---
I requst an exp-run of lang/go122 to solve security issues.

go1.22.4 (released 2024-06-04) includes security fixes to the archive/zip a=
nd
net/netip packages, as well as bug fixes to the compiler, the go command, t=
he
linker, the runtime, and the os package.=20
it's worth noting that the issue of net/netip has been assigned a CVE:
CVE-2024-24790.

References
https://go.dev/doc/devel/release#go1.22.minor
https://github.com/golang/go/issues/67682