Rebuild Todo List Golang staticlibs + security rebuild
Jan. 24, 2019 - Eli Schwartz
Go 1.11.5 has been released and in order to take advantage of the updated runtime, all packages that makedepend on go or go-pie must be rebuilt. This is due to the statically built nature of the language.
Of particular importance is CVE-2019-6486, which this release of Go will fix. All packages currently in the rebuild list import the vulnerable code and must be rebuilt for security purposes.
This TODO may be updated later to include all packages that could benefit from a rebuild without a specific security issue associated.
If there are any questions, ask me or Foxboron for details.
Filter Todo List Packages
| Arch | Repository | Name | Current Version | Staging Version | Maintainers | Status | Last Touched By |
|---|---|---|---|---|---|---|---|
| x86_64 | Extra | alertmanager | 0.27.0-2 | jelle, demize | Complete | jelle | |
| x86_64 | Extra | prometheus | 3.0.0-1 | jelle, demize, hashworks | Complete | jelle | |
| x86_64 | Extra | prometheus-blackbox-exporter | 0.25.0-1 | jelle, demize | Complete | jelle | |
| x86_64 | Extra | prometheus-node-exporter | 1.8.2-2 | jelle, demize | Complete | jelle |