Go 1.11.5 & 1.10.8 to be Rolled Out

Let's figure out what exactly was fixed and if the improvements are really valuable
24 January 2019   980

Corrective issues of the Go 1.11.5 and 1.10.8 programming language are published, in which the vulnerability in the crypto module is fixed. The problem is caused by a flaw in the implementation of elliptic curves, which can be used to trigger a denial of service (creating a heavy load on the CPU). The potential use of the problem to create attacks that recreate the ECDH private key is not excluded if it is reused more than once.

The vulnerability can be exploited in applications that process incoming X.509 certificates, ECDSA digital signatures and JWT tokens. The attack can also be made when processing client-based or server applications of protocols based on ECDH and TLS connections (using the TLS implementation of the Go language). In distributions, the problem still remains uncorrected (Debian, RHEL / EPEL, Fedora, SUSE, Ubuntu, FreeBSD)

Go 1.13 to be Released

There are many new features and improvements in the new version of programming language
04 September 2019   1177

New version of Google support Go(lang) programming language has been released. 

We want to thank everyone who contributed to this release by writing code, filing bugs, providing feedback, and/or testing the beta and release candidates. Your contributions and diligence helped to ensure that Go 1.13 is as stable as possible. 

Go Team

These are some of the features:

  • The go command now downloads and authenticates modules using the Go module mirror and Go checksum database by default
  • Improvements to number literals
  • Error wrapping
  • TLS 1.3 on by default
  • Improved modules support

Learn more at the official website.