1.19.37

bosh-admin-bot released this 07 Jan 02:25

7001d56

Fixed CVEs:

CVE-2024-45337: golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto
CVE-2024-45338: golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

Package Updates:

Updates golang-1-linux to 1.23.4

Updates:

Updates mariadb from 10.6.19 to 10.6.20
Updates mysql-8 from 8.0.39 to 8.0.40
Updates postgresql-13 from 13.16 to 13.18
Updates postgresql-15 from 15.8 to 15.9

What's Changed

Remove unused OpenSSL 1.1 blob by @ystros in #1846
Remove support for Postgres 11 by @ystros in #1845

New Contributors

@ystros made their first contribution in #1846

Full Changelog: v1.19.36...v1.19.37

Contributors

ystros

Assets 2