Description of problem: golang for EPEL7 and EPEL8 is still version 1.15, which is no longer supported upstream. Upstream only supports one previous release series, which at this point is 1.16. I support the singularity package in EPEL & Fedora, and one of its dependencies is now requiring at least golang-1.16. Can the EPEL7 & EPEL8 golang package be updated to the latest 1.16.x? Version-Release number of selected component (if applicable): 1.15.14 How reproducible: Very Steps to Reproduce: 1. yum -y install golang 2. rpm -q golang Actual results: golang-1.15.14-1.el7.x86_64 Expected results: golang-1.16.9-1.el7.x86_64 Additional info:
Actually golang comes from Red Hat in EL8, so this request is only for EPEL7. In fact, I just discovered while writing this that EL8 was updated yesterday to golang 1.16.7 because of a security announcement: https://access.redhat.com/errata/RHSA-2021:4156. So this is now more urgent.
To be fair, the security announcement coincided with the EL8.5 release, so one could instead say that the 8.5 release was the real reason for the upgrade.
Can I please get some response from one of the providers? As I said, I am also an EPEL/Fedora provider. Would it help if I be added to the list of 7 people that are admins or committers for golang so I can release this myself? RHEL7 still has 2-1/2 years until End Of Life, we can't expect epel7 to stay at 1.15 that whole time.
Now it would be at least 1.16.11 or 1.17.4... Thanks. @admiller
And this important announcement https://groups.google.com/g/golang-announce/c/hcmEScgc00k especially around CVE-2021-44717, makes it essential that it be upgraded to 1.16.12 or 1.17.5. Hello, is there anybody there?
This package has changed maintainer in Fedora. Reassigning to the new maintainer of this component.
Jakub Čajka made me the epel7 golang maintainer. I was able to completely copy the f35 configuration to epel7, with only one minor change to not define ExclusiveArch because there was no %{golang_arches} defined, and successfully did a koji build --scratch epel7 from a golang 1.16.13 src rpm. The full epel7 fedpkg build for golang-1.16.13-1 is proceeding now.
Thank you Jakub!
FEDORA-EPEL-2022-14c15afabc has been submitted as an update to Fedora EPEL 7. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-14c15afabc
*** Bug 2014920 has been marked as a duplicate of this bug. ***
*** Bug 2020726 has been marked as a duplicate of this bug. ***
*** Bug 2020737 has been marked as a duplicate of this bug. ***
*** Bug 2030802 has been marked as a duplicate of this bug. ***
*** Bug 2030808 has been marked as a duplicate of this bug. ***
FEDORA-EPEL-2022-14c15afabc has been pushed to the Fedora EPEL 7 testing repository. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-14c15afabc See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-EPEL-2022-246382d5dc has been submitted as an update to Fedora EPEL 7. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-246382d5dc
FEDORA-EPEL-2022-246382d5dc has been pushed to the Fedora EPEL 7 testing repository. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-246382d5dc See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-EPEL-2022-246382d5dc has been pushed to the Fedora EPEL 7 stable repository. If problem still persists, please make note of it in this bug report.