golang: Update to 1.25.3

go1.25.2 (released 2025-10-07) includes security fixes to the
archive/tar, crypto/tls, crypto/x509, encoding/asn1, encoding/pem,
net/http, net/mail, net/textproto, and net/url packages, as well as
bug fixes to the compiler, the runtime, and the context, debug/pe,
net/http, os, and sync/atomic packages.

go1.25.3 (released 2025-10-13) includes fixes to the crypto/x509
package.

Changelog: https://go.dev/doc/devel/release#go1.25.minor

Fixes:
- CVE-2025-47912
- CVE-2025-58183
- CVE-2025-58185
- CVE-2025-58186
- CVE-2025-58187
- CVE-2025-58188
- CVE-2025-58189
- CVE-2025-61723
- CVE-2025-61724
- CVE-2025-61725

Signed-off-by: Tianling Shen <[email protected]>

diff --git a/lang/golang/golang/Makefile b/lang/golang/golang/Makefile
index f8a3238edca14f0f49c83bba0763bcb23e4f1e54..0ec3356bb46452f77c1b082e19ab57137b7d204c 100644 (file)
--- a/lang/golang/golang/Makefile
+++ b/lang/golang/golang/Makefile
@@ -8,7 +8,7 @@
 include $(TOPDIR)/rules.mk
 
 GO_VERSION_MAJOR_MINOR:=1.25
-GO_VERSION_PATCH:=1
+GO_VERSION_PATCH:=3
 
 PKG_NAME:=golang
 PKG_VERSION:=$(GO_VERSION_MAJOR_MINOR)$(if $(GO_VERSION_PATCH),.$(GO_VERSION_PATCH))
@@ -20,7 +20,7 @@ GO_SOURCE_URLS:=https://dl.google.com/go/ \
 
 PKG_SOURCE:=go$(PKG_VERSION).src.tar.gz
 PKG_SOURCE_URL:=$(GO_SOURCE_URLS)
-PKG_HASH:=d010c109cee94d80efe681eab46bdea491ac906bf46583c32e9f0dbb0bd1a594
+PKG_HASH:=a81a4ba593d0015e10c51e267de3ff07c7ac914dfca037d9517d029517097795
 
 PKG_MAINTAINER:=Jeffery To <[email protected]>
 PKG_LICENSE:=BSD-3-Clause