Change logs for golang-1.14 source package in Hirsute

golang-1.14 (1.14.7-2ubuntu2) hirsute; urgency=medium

  * SECURITY UPDATE: XSS (LP: #1914372)
    - debian/patches/CVE-2020-24553.patch: Add Content-Type detection in
      net/http/cgi and net/http/fcgi.
    - CVE-2020-24553

 -- Dariusz Gadomski <email address hidden>  Wed, 03 Feb 2021 09:44:21 +0100

golang-1.14 (1.14.7-2ubuntu1) groovy; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - cmd/dist: increase default timeout scale for arm (LP: #1893640)
    - Backport s390x miscompilation fix.
    - add riscv64 patches

golang-1.14 (1.14.7-2) unstable; urgency=medium

  * Team upload.
  * Backport patch to fix test on arm64 (Closes: #967084)

golang-1.14 (1.14.7-1) unstable; urgency=medium

  * New upstream version 1.14.7
    - encoding/binary: ReadUvarint and ReadVarint can read an unlimited
      number of bytes from invalid inputs. CVE-2020-16845

golang-1.14 (1.14.6-1) unstable; urgency=medium

  * New upstream version 1.14.6
    - Refresh patches
    - net/http: Expect 100-continue panics in httputil.ReverseProxy.
      See https://github.com/golang/go/issues/34902, fixes CVE-2020-15586

golang-1.14 (1.14.4-2) unstable; urgency=medium

  * Team upload.
  * Source-only upload to rebuild on mipsel.

golang-1.14 (1.14.4-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Backport patches to fix the FPU ABI problems for mips32
    https://go-review.googlesource.com/c/go/+/237058/
    Closes: #960674

 -- Gianfranco Costamagna <email address hidden>  Sat, 05 Sep 2020 13:27:35 +0200