[scarthgap,04/14] go: patch CVE-2026-32289

From: "Theo Gaige (Schneider Electric)" <tgaige.opensource@witekio.com>

From: tgaige.opensource@witekio.com
To: openembedded-core@lists.openembedded.org
Cc: hsimeliere.opensource@witekio.com,
	"Theo Gaige (Schneider Electric)" <tgaige.opensource@witekio.com>,
	Bruno Vernay <bruno.vernay@se.com>
Subject: [scarthgap][PATCH 04/14] go: patch CVE-2026-32289
Date: Thu, 21 May 2026 12:09:37 +0200
Message-ID: <20260521100949.1299757-4-tgaige.opensource@witekio.com>
In-Reply-To: <20260521100949.1299757-1-tgaige.opensource@witekio.com>
References: <20260521100949.1299757-1-tgaige.opensource@witekio.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?q?ZpbCUb2Nd7K3Le4ERSNietyDYjXR?=
	=?utf-8?q?p0gczlaxCnC1eRt6zwg/ypq8PZLg/+EAVPdnGgj/m2eg2BMALXN7XbEo5davU47i8?=
	=?utf-8?q?teAhTmDGS1JBkbzHSkJBzsGlIeuCFQXKTM6slqXTDafnzPvQvdcUxuOvvcPR7szyS?=
	=?utf-8?q?2LrEeKIBKXP4lf8Hp04iYJT29iWO8Qks39Tna64+y8Eg7NPIjI9YZXFrcV3XDir2e?=
	=?utf-8?q?H8IH4tK2Miu8yM/s38VwKqax5GPoG30jJQfGg33lpLsCCqVqF/l6nKuU40jl1zrbC?=
	=?utf-8?q?zpFl1I5ZBGPP8fRue/bGeM7ZrsI/wE2H/LeoWM1VbwJnlrCDb2rOaUcbxrFUjW/y9?=
	=?utf-8?q?DKJ7L9L5IzyaL9nCj/nSNFYGsq5iku7T15z2dxbIerpsJbqoar1Okd4FF/89dYGK+?=
	=?utf-8?q?YxTy4c3uOPFcW2fz8VQsgD9AChfCzNngXqyVcJZzn9r8+nTHiiZ6ETs49z2a8jqw3?=
	=?utf-8?q?JQEdtPc2j1SPwZLG29B3wGVONF2k7MC5VBLw74Hywp5c3GqCIUAChX45xdJH4wfLC?=
	=?utf-8?q?nG5Ll9RXRnE7rzi4OPHbzpeYgIteis+ltv5n+HjuMIFG2tkMNB3tywVBnAs8QmWXe?=
	=?utf-8?q?7RLpiUIavkne7O0oMm9n4UjqLKg1rNk5AXBrLUrsoOjUPOlmTuepjlfsXwb0pseQx?=
	=?utf-8?q?U2zf9UHLI/v3Xhm2dah4zYPkMFiSKKkkIkyB5Sj5s+d4O0C4ALzNEBUrb0iS3nVaF?=
	=?utf-8?q?VMKXitSDbmr1hgGVyn7E614dQEUr9kGieu73My35HBdYrCOYLKd2WiZD6VqhGp8sl?=
	=?utf-8?q?2n/xMzqSaZe4AIPPCxM0YGLA5OX38U0x3e4gJb+jTrZQ5d9VS14ye7zOb3nMVw0Wi?=
	=?utf-8?q?yu3GXKyQ09AJ0Y+YHJiL9SUyjFceDAD1G2R1XGH1nTcOJJkXsHuzwT+yalteTcN6n?=
	=?utf-8?q?/UUzwBNzo1wzi49gDKTmXEBiRg1ZGeC6WuEOA66gvXFEmVH2A4aEBkwXAJ/IvCaDF?=
	=?utf-8?q?a0Asl93ODczyaPT8NXBxm7rq/4bk2EhywtQuEpONKMFoR1u4/cEDzimFpW0X/Ogkx?=
	=?utf-8?q?Vy/C1iCaxUTjhYeiBvvHN01B3NrmiJvmlFbc6iw105E6JU91wbzEaoGK79uIuEhfb?=
	=?utf-8?q?PkzffTkyzFvIDp80bJv1goHZYBTILKaiphIKRKapN0e6JmzbOhJhbCkEBFzZjw5Ck?=
	=?utf-8?q?zTLioT58CaI7yh/l1du4dKR8f52PuWYHGaDD1RlgX7ckKHxc4uWwYccrRjPkacqgC?=
	=?utf-8?q?x1myhNSDE407AfNMVMuQUhktuxFeNDoPte/DxmPAm8Rqui+V3+03e6qoF9QmZbIbA?=
	=?utf-8?q?NLiF5wAY/5aCqMO9gBpuUNDLqz0UlZ+fyM5ev8IFIK1caUKmQaYr0j3fqn4k7tHTG?=
	=?utf-8?q?CHhC7ZasJ52wtdWgNw3RxV4PTPJaixN+KjUrGCTlo4Q/Szq1IaLq/gkktdwSPtznr?=
	=?utf-8?q?BlfIo/vg0LTI0vEcSfPDwou2OF8mqWLu+yMUov7/LxU4hfNIVWh5wylUxLBewiEVI?=
	=?utf-8?q?wjxSojEEN0S794mT+toK378wiADu9SoL1fhNJWlH0JMEcPWdq1BtBPtRsqP4Vm99F?=
	=?utf-8?q?D3wpkyaBFPzcG21pMBDpjMEVsPbS/hzWOWvr5LooqRNKWZUw1TIbQNCV01HeLzoYK?=
	=?utf-8?q?FV9qFr8siTIa6J5iAC6m6flRLh6anvKdnlFT0kyvHlU+yBia1oNp/yqmIE0jgMZYO?=
	=?utf-8?q?9tQj60klq0/IrhMNJ8mI1GsKVQmdvVtQ=3D=3D?=
X-Exchange-RoutingPolicyChecked: 
	QOyWJUyS8jlWZJUg/j6HmQjTZCpNa2e2kLmBboaWb3cUnXwwejqWsVOguw9gAX8ZF+xcXfl2f41sQnwlgHqqcecM27OQgJAxwP1ai8tlied7pJTW4FA6iiUOXsAz6k7kboi4+2i9VsvgmwZvFfQ0FpY1I7gNbIyP4AMZXT4zvI2Os2zNS3MXltHD5aPIlBjz1kia9msltW7MAhaTmT+qObhDR5zTCI7Kx9S0dmZtWny7iMVhDCAXYJ5tjGRMoRXqT3iE9dtxCgulmbIs9SD0H6Xz2va6+diApEoTjWiecjN2teZiw81mFQQhdqGzmh3zuArPrNSWVhDM2bbkSp9iww==
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 
	OJUS/03aU5dI0GmTvmmLvZ9NhntK6IactGKwf6Gc+U1ec9N0ux5IjS9J4sKwLkwAcXuUIl8IaBzvF5+DDQs/5KoyufxPtHnWbTb5YdAfRxswWhMqgk+DoGKZzy80aGetSkLFFi9SlSR7jCVTOCbcRCDezEzE38DSxXYAebOP4W3b/fB08cYlqoyoHsHAsKvU5f/IwjHjgIMkbfdAhh6ThjWSCVnlTyzCA7PBlcNDxPXlWMC1ViGyCjeBlj7mTFaMwo4KKHmOD4e0vdmXguCy+9ZyyJRJXrSQeNSbJOr5QKeZZa/UN9ZKgg05ypD2lZ4vP6cGISnS3rEgW8c44+/gnIt6U8T2dAjOVI16GLqzfDiMOcwQod3c3bcox6LMvkGBt4Q90KIlHkKb7oBbr/Ks39h8iB0iEyVRrC0Zl6RKVfF6zrKWLAWwfIZrlfqv0kRkGFl5k7fDr00cyhbn/6mETcuf2XQJRre7zbmRbqAjTS8ulHdRjT6KObDJPJXzphJlHRhYnN8P1PLOoLVkYUvD1HA4rhk8Hcg4uGiNBlOt2l5PDyy2494rO11eZ0QukS43fuWG+TPIn8Scl+lGjok6YILV6y0vBFuM5IcxGirVcelyAnHxUbYzgSqBMRv3xcvF
X-OriginatorOrg: witekio.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 9cc27374-4660-4b0b-21d8-08deb721203a
X-MS-Exchange-CrossTenant-AuthSource: AM9P192MB1396.EURP192.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 May 2026 10:10:03.7360
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 317e086a-301a-49af-9ea4-48a1c458b903
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 aefwuiZxlZaU5/aKIFTj+AsqDUkOcO8+sJSA2eGYNL0ypcr0TSHUNOjfQPSw70T4fg3vtM+D5m74v5vgbFh2+A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4P192MB1672
X-cloud-security-sender: tgaige@witekio.com
X-cloud-security-recipient: openembedded-core@lists.openembedded.org
X-cloud-security-crypt: load encryption module
X-cloud-security-Mailarchiv: E-Mail archived for:
 tgaige.opensource@witekio.com
X-cloud-security-Mailarchivtype: outbound
X-cloud-security-Virusscan: CLEAN
X-cloud-security-disclaimer: This E-Mail was scanned by E-Mailservice on
 mx-gate25-hz12 with 4gLkg76YrTz1X3m2
X-cloud-security-connect: 
 mail-francecentralazon11023101.outbound.protection.outlook.com[40.107.162.101],
 TLS=1, IP=40.107.162.101
X-cloud-security-Digest: ebe40c5427ea43bc40d99d5f9c615533
X-cloud-security: scantime:1.555
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com
 [45.33.107.173] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Thu, 21 May 2026 10:10:28 -0000
X-Groupsio-URL: 
 https://lists.openembedded.org/g/openembedded-core/message/237488

Message ID	20260521100949.1299757-4-tgaige.opensource@witekio.com
State	New
Headers	show Return-Path: <tgaige.opensource@witekio.com> ip: 94.100.139.225, mailfrom: tgaige@witekio.com) From: tgaige.opensource@witekio.com To: openembedded-core@lists.openembedded.org Cc: hsimeliere.opensource@witekio.com, "Theo Gaige (Schneider Electric)" <tgaige.opensource@witekio.com>, Bruno Vernay <bruno.vernay@se.com> Subject: [scarthgap][PATCH 04/14] go: patch CVE-2026-32289 Date: Thu, 21 May 2026 12:09:37 +0200 Message-ID: <20260521100949.1299757-4-tgaige.opensource@witekio.com> In-Reply-To: <20260521100949.1299757-1-tgaige.opensource@witekio.com> References: <20260521100949.1299757-1-tgaige.opensource@witekio.com> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit MIME-Version: 1.0 for: tgaige.opensource@witekio.com
Series	[scarthgap,01/14] go: patch CVE-2026-27142 \| expand [scarthgap,01/14] go: patch CVE-2026-27142 [scarthgap,02/14] go: patch CVE-2026-32280 [scarthgap,03/14] go: patch CVE-2026-32283 [scarthgap,04/14] go: patch CVE-2026-32289 [scarthgap,05/14] go: patch CVE-2026-33811 [scarthgap,06/14] go: patch CVE-2026-39817 [scarthgap,07/14] go: patch CVE-2026-39819 [scarthgap,08/14] go: patch CVE-2026-39820 [scarthgap,09/14] go: patch CVE-2026-39825 [scarthgap,10/14] go: patch CVE-2026-39826 [scarthgap,11/14] go: patch CVE-2026-42499 [scarthgap,12/14] go: patch CVE-2026-42501 [scarthgap,13/14] go: patch CVE-2026-42504 [scarthgap,14/14] go: patch CVE-2026-42507

[scarthgap,04/14] go: patch CVE-2026-32289

Commit Message

Patch