consul/18358.txt at 800279098a0422832d1f4fd5fa3e3aa768be3ff1 - consul - Status.im Repos

status-im/consul

mirror of https://github.com/status-im/consul.git synced 2025-01-10 05:45:46 +00:00

Michael Zalimeni 905e371607

[NET-5146] security: Update Go version to 1.20.7 and x/net to 0.13.0 (#18358 )

* Update Go version to 1.20.7

This resolves [CVE-2023-29409]
(https://nvd.nist.gov/vuln/detail/CVE-2023-29409)(`crypto/tls`).

* Bump golang.org/x/net to 0.13.0

Addresses [CVE-2023-3978](https://nvd.nist.gov/vuln/detail/CVE-2023-3978)
for security scans (non-impacting).

2023-08-02 13:10:29 -04:00

8 lines

306 B

Plaintext

Raw Blame History

 ```release-note:security
 Upgrade to use Go 1.20.7.
 This resolves vulnerability [CVE-2023-29409](https://nvd.nist.gov/vuln/detail/CVE-2023-29409)(`crypto/tls`).
 ```
 ```release-note:security
 Update `golang.org/x/net` to v0.13.0 to address [CVE-2023-3978](https://nvd.nist.gov/vuln/detail/CVE-2023-3978).
 ```