update golang to 1.12.10.There is a CVE for Go and this vulnerability is fixed in 1.12.10

[tanjunchen]

What keywords did you search in kubeadm issues before filing this one?

Is this a BUG REPORT or FEATURE REQUEST?

https://groups.google.com/forum/#!msg/golang-announce/lVEm7llp0w0/VbafyRkgCgAJ

There is a CVE for Go and this vulnerability is fixed in 1.12.10. We should update it.
See: https://nvd.nist.gov/vuln/detail/CVE-2019-16276

See issue golang/go#34540
Seems this is fixed in 1.12.10. I suggest we should update to 1.12.10 or later

Versions

kubeadm version (use kubeadm version):

Environment:

• Kubernetes version (use kubectl version):
• Cloud provider or hardware configuration:
• OS (e.g. from /etc/os-release):
• Kernel (e.g. uname -a):
• Others:

What happened?

What you expected to happen?

How to reproduce it (as minimally and precisely as possible)?

Anything else we need to know?

[tanjunchen]

@ereslibre should we update the golang version?

[neolit123]

Hi this is not an issue for the kubeadm tracker. Kubeadm is still built as part of the k8s release. I thing the golang version is being updated in kubernetes/kubernetes already.