On Sat, Oct 29, 2022 at 4:14 PM 'Jan Schaumann' via golang-nuts <golang-nuts@googlegroups.com> wrote: > > Would it be possible for the Golang team to say whether this update is > related to the OpenSSL vulnerability to be announced on the same day? > > Knowing this would help a lot of people plan and prioritize their defensive > actions on that day.
While I do not myself know what vulnerabilities are leading to the minor Go releases, I have been told that they are not related to the OpenSSL vulnerability. Ian > On Wednesday, October 26, 2022 at 3:17:50 PM UTC-4 anno...@golang.org wrote: >> >> Hello gophers, >> >> We plan to issue Go 1.19.3 and Go 1.18.8 on Tuesday, November 1. >> >> These minor releases include PRIVATE security fixes to the standard library. >> >> Following our security policy, this is the pre-announcement of those >> releases. >> >> Thanks, >> Tatiana and Heschi for the Go team > > -- > You received this message because you are subscribed to the Google Groups > "golang-nuts" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to golang-nuts+unsubscr...@googlegroups.com. > To view this discussion on the web visit > https://groups.google.com/d/msgid/golang-nuts/51a14567-1886-40ef-bb0f-0723427deef8n%40googlegroups.com. -- You received this message because you are subscribed to the Google Groups "golang-nuts" group. To unsubscribe from this group and stop receiving emails from it, send an email to golang-nuts+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/golang-nuts/CAOyqgcWiDw9KW%2BXC-WNor9j26%3DtNdr%3DatyFQiXxPnd5B3cG2fA%40mail.gmail.com.
