[scarthgap,14/14] go: patch CVE-2026-42507

Return-Path: <tgaige.opensource@witekio.com>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org
 (localhost.localdomain [127.0.0.1])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 8CD6FCD5BAC
	for <webhook@archiver.kernel.org>; Thu, 21 May 2026 10:10:48 +0000 (UTC)
Received: from mx-relay151-hz1-if1.hornetsecurity.com
 (mx-relay151-hz1-if1.hornetsecurity.com [94.100.128.161])
 by mx.groups.io with SMTP id smtpd.msgproc01-g2.33231.1779358243993056870
 for <openembedded-core@lists.openembedded.org>;
 Thu, 21 May 2026 03:10:44 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@witekio.com header.s=selector1 header.b=cf2jJ9cA;
 spf=permerror,
 err=parse error for token &{10 18 spf.hornetsecurity.com}: limit exceeded
 (domain: witekio.com, ip: 94.100.128.161, mailfrom: tgaige@witekio.com)
Received: from mail-swedencentralazon11023073.outbound.protection.outlook.com
 ([52.101.83.73]) by mx-gate151-hz1;
 Thu, 21 May 2026 12:10:41 +0200
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;
 b=gl8vPrJD70wSKePAODJkuVeIcSsGN6iAGV/x5e5x2SQVzJaZ397FEgephHetgIP8LlFMmhzBc8MGWCKhf6cIxI/NDX1GMJLw6C0ishhijIv5f9SqNUazfT0o6uAYGCo2CQQM2ClfMjekwesfQvJWJxix8EARPfO2O79A8OAri5Pasz1gun/zMGCNlKK1rGhnq9JRn8PqkXC3dsnErP6GHi3BZEasJ1D2dsKzLLvNLLsbeIswN3ObfD2anAc6jTTekg2FcLHv84tQeeGVo+mD5SVEa8LygpUB1LBUrzoNceO/nfjiCIf5P7dBzLi26v/SyDZmTN8mm6MCN4dtN8inPA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector10001;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
 bh=jZZezxMPqtSKci3R+aM2Py31yeIsHAMtPyLuxQZ1Jy4=;
 b=OTXOnFFB7iobzVZWL4zX4Q+cCO/wK/3WLbNAuXrUidL9hW/XCr51FFZ+5gA454U3VD3a0H5PhDNK/09iPw+brObEqVz2yFJOXKzbNm4X5ULeaKgf8b/LsqRCmSh1aswlkGfi/stwsXBooOuq7DhswjTUeIPjcjiptORR2X1jwdcTZtWmmMbWtKa6WxTo3TZFT/nQ9TM6CQiUvDW0AeKd3kH0HFW2xJhfrYgXNVMCyynplt0882saLXHDj/qCR9066PW8bTpH50qMEXYW3cdk9EuPLWt8zxB6vDs6+s2jD3sQmEwMNMNeT3mc8eMOd9oKTJdk1QCxMQMLVIDtJyFMeA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=witekio.com; dmarc=pass action=none header.from=witekio.com;
 dkim=pass header.d=witekio.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=witekio.com;
 s=selector1;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=jZZezxMPqtSKci3R+aM2Py31yeIsHAMtPyLuxQZ1Jy4=;
 b=cf2jJ9cAPPXNgwa0b9jXmAz2jtMcGi+M9Gu5Aq4G6cIUJu1/+AznzXj12xJDLWfP7c1m/00Wh1pszL38L2TOVfKwXXu2x/gHzuNoV6/4p3N8+tVeZYs1xAjP4kdkghA1xfTnT/clCJIrDexMFWlr38wHWjP7aoBEvZfHvrdqQOfhSOPHW9gn8Aigap45bZfMbTbRd22NoOktlcR3EWbDeNci9IlD7XBvhmIGV7f7+IO2w7C15OgAexIQ1z0FvSk95K5O91r5/t6PHrj7UZr2opdrkzrpjBFWxXvcKwzFBPAD4+j9LqFdwogptMOHRnA91k9XIPZjo8h5oMAdnItopg==
Authentication-Results: dkim=none (message not signed)
 header.d=none;dmarc=none action=none header.from=witekio.com;
Received: from AM9P192MB1396.EURP192.PROD.OUTLOOK.COM (2603:10a6:20b:3ad::23)
 by AS4P192MB1672.EURP192.PROD.OUTLOOK.COM (2603:10a6:20b:507::5) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.21.48.17; Thu, 21 May
 2026 10:10:17 +0000
Received: from AM9P192MB1396.EURP192.PROD.OUTLOOK.COM
 ([fe80::25ed:86ef:4d24:3d38]) by AM9P192MB1396.EURP192.PROD.OUTLOOK.COM
 ([fe80::25ed:86ef:4d24:3d38%5]) with mapi id 15.21.0025.023; Thu, 21 May 2026
 10:10:17 +0000
From: tgaige.opensource@witekio.com
To: openembedded-core@lists.openembedded.org
Cc: hsimeliere.opensource@witekio.com,
	"Theo Gaige (Schneider Electric)" <tgaige.opensource@witekio.com>
Subject: [scarthgap][PATCH 14/14] go: patch CVE-2026-42507
Date: Thu, 21 May 2026 12:09:47 +0200
Message-ID: <20260521100949.1299757-14-tgaige.opensource@witekio.com>
X-Mailer: git-send-email 2.43.0
In-Reply-To: <20260521100949.1299757-1-tgaige.opensource@witekio.com>
References: <20260521100949.1299757-1-tgaige.opensource@witekio.com>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-ClientProxiedBy: ZR0P278CA0104.CHEP278.PROD.OUTLOOK.COM
 (2603:10a6:910:23::19) To AM9P192MB1396.EURP192.PROD.OUTLOOK.COM
 (2603:10a6:20b:3ad::23)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: AM9P192MB1396:EE_|AS4P192MB1672:EE_
X-MS-Office365-Filtering-Correlation-Id: 6bd37f21-7c7d-4c8c-e1de-08deb7212865
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: 
	BCL:0;ARA:13230040|1800799024|366016|52116014|376014|13003099007|22082099003|18002099003|56012099003|38350700014|3023799007|5023799004|6133799003;
X-Microsoft-Antispam-Message-Info: 
	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
X-Forefront-Antispam-Report: 
	CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:AM9P192MB1396.EURP192.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(52116014)(376014)(13003099007)(22082099003)(18002099003)(56012099003)(38350700014)(3023799007)(5023799004)(6133799003);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 
 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
X-Exchange-RoutingPolicyChecked: 
	kVzXNHI5uuhuExqbSw/Mxy6jG86ssClM+UfnC5sDX8TKfRrBL/06SZ6i7aE8d0pSbaIipUtJVWs23Kdm+Lp8gpTRWQva15laqe1mYDKivNFLW6Br+ButJqaAAM0TOC2iV6NvQOVYxMs6fmftkzd80cjXYwZjjzN63xMVTYFIqnszZaxeFMHaixGybq0xXFfxz849ZOByl8svdIPajvrG+JK9e7N7d+Zm8XQhsqoYpxI9UwrGolBt+iCgUvvVkswKuWgqzz4Q3gUT95RcqYKlz2bjXoXh/ASJAPfQcsDfjKlPhj6p4GKH6IJAQeaTwv0opoDUE1WV/8wTGE1vvz9pBA==
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 
	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
X-OriginatorOrg: witekio.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 6bd37f21-7c7d-4c8c-e1de-08deb7212865
X-MS-Exchange-CrossTenant-AuthSource: AM9P192MB1396.EURP192.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 May 2026 10:10:17.3680
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 317e086a-301a-49af-9ea4-48a1c458b903
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 9MDart5YnlBrAwVzZSAKSE090zNEsgfMdgEckXkP10QCTEfGbGi3Tt9I9x8tWtBeYnalnbBBCPN16t/gQgl6AA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4P192MB1672
X-cloud-security-sender: tgaige@witekio.com
X-cloud-security-recipient: openembedded-core@lists.openembedded.org
X-cloud-security-crypt: load encryption module
X-cloud-security-Mailarchiv: E-Mail archived for:
 tgaige.opensource@witekio.com
X-cloud-security-Mailarchivtype: outbound
X-cloud-security-Virusscan: CLEAN
X-cloud-security-disclaimer: This E-Mail was scanned by E-Mailservice on
 mx-gate151-hz1 with 4gLkgZ1Pttz1g0t8
X-cloud-security-connect: 
 mail-swedencentralazon11023073.outbound.protection.outlook.com[52.101.83.73],
 TLS=1, IP=52.101.83.73
X-cloud-security-Digest: 6d58408559a3c326a9afc74bd48fcc13
X-cloud-security: scantime:2.811
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com
 [45.33.107.173] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Thu, 21 May 2026 10:10:48 -0000
X-Groupsio-URL: 
 https://lists.openembedded.org/g/openembedded-core/message/237497