Bug 2020629

Summary: Rebuild OSP16.1 golang dependencies on golang 1.15
Product: Red Hat OpenStack Reporter: Miguel Garcia <mgarciac>
Component: distributionAssignee: Miguel Garcia <mgarciac>
Status: CLOSED ERRATA QA Contact: Lon Hohberger <lhh>
Severity: medium Docs Contact:
Priority: medium    
Version: 16.1 (Train)CC: jjoyce, jschluet, mburns, shrjoshi
Target Milestone: z8Keywords: Triaged
Target Release: 16.1 (Train on RHEL 8.2)   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: golang-github-vbatts-tar-split-0.11.1-6.el8ost Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-03-24 10:58:25 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1990218, 1990714, 1990718, 1992904, 1992907, 1992911    

Description Miguel Garcia 2021-11-05 12:56:44 UTC 
Currently OSP 16.1 golang dependencies are built on golang 1.13, provided by RHEL 8.2 EUS.

We should rebuild them on at least golang 1.15, provided by RHEL 8.4 EUS, to pick up the most CVE fixes possible.

OSP does not ship golang itself, so this does not require shipping anything beyond the rebuilt packages themselves.
Comment 9 errata-xmlrpc 2022-03-24 10:58:25 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: Red Hat OpenStack Platform 16.1 (golang-github-vbatts-tar-split) security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:0988