New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CVE-2022-41717 (golang.org/x/net) #3431

Closed

huberts90 opened this issue Dec 9, 2022 · 3 comments

huberts90 commented Dec 9, 2022

Description

Fix CVE-2022-41717 which comes from golang.org/x/net package.

Reference: golang/go#56350

Environment

go version: 1.19
gin version (or commit ref): v1.8.1
operating system: Linux (Ubuntu)

The text was updated successfully, but these errors were encountered:

mstmdev mentioned this issue

Fix the GO-2022-1144 vulnerability #3432

Merged

SaradaSastri commented Dec 19, 2022

Few other HIGH CVE's too are coming from golang.org/x/net
"CVE-2022-41717--medium
CVE-2022-27664--high
CVE-2021-33194--high
CVE-2021-44716--high
CVE-2021-31525--medium"

soumiksamanta commented Dec 21, 2022

@appleboy when will the v1.8.2 be released?
Thanks

Member

appleboy commented Dec 22, 2022

@soumiksamanta see #3432

appleboy closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment