DockerCLI/.github/workflows
Paweł Gronowski c1d70d1fbb
update to go1.21.10
These minor releases include 2 security fixes following the security policy:

- cmd/go: arbitrary code execution during build on darwin
On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when using the Apple version of ld, due to
usage of the -lto_library flag in a "#cgo LDFLAGS" directive.
Thanks to Juho Forsén of Mattermost for reporting this issue.
This is CVE-2024-24787 and Go issue https://go.dev/issue/67119.

- net: malformed DNS message can cause infinite loop
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
Thanks to long-name-let-people-remember-you on GitHub for reporting this issue, and to Mateusz Poliwczak for bringing the issue to
our attention.
This is CVE-2024-24788 and Go issue https://go.dev/issue/66754.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.22.3

- https://github.com/golang/go/issues?q=milestone%3AGo1.21.10+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.21.9...go1.21.10

**- Description for the changelog**

```markdown changelog
Update Go runtime to 1.21.10
```

Signed-off-by: Paweł Gronowski <pawel.gronowski@docker.com>
(cherry picked from commit eb99994c75)
Signed-off-by: Paweł Gronowski <pawel.gronowski@docker.com>
2024-05-08 09:52:05 +02:00
..
build.yml Update gha runners and engines used in e2e tests 2024-02-13 13:30:09 +00:00
codeql.yml ci: set DISABLE_WARN_OUTSIDE_CONTAINER=1 for CodeQL action 2024-03-17 14:49:49 +01:00
e2e.yml ci: set codecov token 2024-02-22 18:11:18 +01:00
test.yml update to go1.21.10 2024-05-08 09:52:05 +02:00
validate-pr.yml ci/validate-pr: Use `::error::` command to print errors 2024-04-19 14:02:20 +02:00
validate.yml Update gha runners and engines used in e2e tests 2024-02-13 13:30:09 +00:00