v1.6.2
·
1758 commits
to master
since this release
-
Add support for Go
1.4.3and removed support for Go1.4.1
(https://www.pivotaltracker.com/story/show/103969132)Go
1.4.3is a security update for the following CVEs:- CVE-2015-5739
Content Length treated as valid header - CVE-2015-5740
Double content-length headers does not return 400 error - CVE-2015-5741
Additional hardening, not sending Content-Length w/Transfer-Encoding
- CVE-2015-5739
Packaged binaries:
| name | version | cf_stacks |
|---|---|---|
| go | 1.2.1 | cflinuxfs2 |
| go | 1.2.2 | cflinuxfs2 |
| go | 1.3.2 | cflinuxfs2 |
| go | 1.3.3 | cflinuxfs2 |
| go | 1.4.2 | cflinuxfs2 |
| go | 1.4.3 | cflinuxfs2 |
| go | 1.5 | cflinuxfs2 |
| go | 1.5.1 | cflinuxfs2 |