Skip to content

Commit

Permalink
[RHOAIENG-17336] - Denial of Service on golang.org/x/net/html (#461)
Browse files Browse the repository at this point in the history 
chore:	fix [CVE-2024-45338](https://www.cve.org/CVERecord?id=CVE-2024-45338) -  Denial of Service on golang.org/x/net/html

Signed-off-by: Spolti <[email protected]>
  • Loading branch information
@spolti
spolti authored Jan 10, 2025
1 parent e2c9247 commit 3222f0e
Show file tree
Hide file tree
Showing 4 changed files with 73 additions and 481 deletions.
13 changes: 8 additions & 5 deletions go.mod
View file
Original file line number Diff line number Diff line change
Expand Up @@ -115,15 +115,15 @@ require (
go.opentelemetry.io/otel/trace v1.29.0 // indirect
go.uber.org/atomic v1.11.0 // indirect
go.uber.org/multierr v1.11.0 // indirect
golang.org/x/crypto v0.26.0 // indirect
golang.org/x/crypto v0.31.0 // indirect
golang.org/x/exp v0.0.0-20240823005443-9b4947da3948 // indirect
golang.org/x/mod v0.20.0 // indirect
golang.org/x/net v0.28.0 // indirect
golang.org/x/oauth2 v0.22.0 // indirect
golang.org/x/sync v0.8.0 // indirect
golang.org/x/sys v0.24.0 // indirect
golang.org/x/term v0.23.0 // indirect
golang.org/x/text v0.17.0 // indirect
golang.org/x/sync v0.10.0 // indirect
golang.org/x/sys v0.28.0 // indirect
golang.org/x/term v0.27.0 // indirect
golang.org/x/text v0.21.0 // indirect
golang.org/x/time v0.6.0 // indirect
golang.org/x/tools v0.24.0 // indirect
google.golang.org/genproto v0.0.0-20240827150818-7e3bb234dfed // indirect
Expand All @@ -140,3 +140,6 @@ require (
sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
)

// Fixes CVE-2024-45338
replace golang.org/x/net => golang.org/x/net v0.33.0
Loading

0 comments on commit 3222f0e

Please sign in to comment.