Skip to content

Commit

Permalink
Bump Golang 1.10.6 (CVE-2018-16875)
Browse files Browse the repository at this point in the history 
go1.10.6 (released 2018/12/14)

- crypto/x509: CPU denial of service in chain validation golang/go#29233
- cmd/go: directory traversal in "go get" via curly braces in import paths golang/go#29231
- cmd/go: remote command execution during "go get -u" golang/go#29230

See the Go 1.10.6 milestone on the issue tracker for details:
https://github.com/golang/go/issues?q=milestone%3AGo1.10.6

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
  • Loading branch information
@thaJeztah
thaJeztah committed Dec 14, 2018
1 parent e9aef2b commit af3e6d2
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Dockerfile
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
FROM golang:1.10.5
FROM golang:1.10.6

# allow replacing httpredir or deb mirror
ARG APT_MIRROR=deb.debian.org
Expand Down

0 comments on commit af3e6d2

Please sign in to comment.