mirror of
https://github.com/status-im/consul.git
synced 2025-01-09 05:23:04 +00:00
29cdb75d05
Bump golang.org/x/net to 0.12.0 While not necessary to directly address CVE-2023-29406 (which should be handled by using a patched version of Go when building), an accompanying change to HTTP/2 error handling does impact agent code. See https://go-review.googlesource.com/c/net/+/506995 for the HTTP/2 change. Bump this dependency across our submodules as well for the sake of potential indirect consumers of `x/net/http`.
4 lines
131 B
Plaintext
4 lines
131 B
Plaintext
```release-note:security
|
|
Upgrade golang.org/x/net to address [CVE-2023-29406](https://nvd.nist.gov/vuln/detail/CVE-2023-29406)
|
|
```
|