chore(deps): update golang.org/x packages to v0.22.0 #621
renovate[bot]Annotations
13 errors and 1 warning
|
osv-scanner(CVE-2024-24788):
go.mod#L1
[existing] Malformed DNS message can cause infinite loop in net. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(CVE-2024-24791):
go.mod#L1
[existing] Denial of service due to improper 100-continue handling in net/http. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(CVE-2024-34155):
go.mod#L1
[existing] Stack exhaustion in all Parse functions in go/parser. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(CVE-2024-34156):
go.mod#L1
[existing] Stack exhaustion in Decoder.Decode in encoding/gob. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(CVE-2024-34158):
go.mod#L1
[existing] Stack exhaustion in Parse in go/build/constraint. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-236w-p7wf-5ph8):
go.mod#L1
[existing] Mishandling of corrupt central directory record in archive/zip. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-32ch-6x54-q4h9):
go.mod#L1
[existing] Incorrect forwarding of sensitive headers and cookies on HTTP redirect in net/http. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-3q2c-pvp5-3cqp):
go.mod#L1
[existing] Verify panics on certificates with an unknown public key algorithm in crypto/x509. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-49gw-vxvf-fc2g):
go.mod#L1
[existing] Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses in net/netip. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-4v7x-pqxf-cx7m):
go.mod#L1
[existing] HTTP/2 CONTINUATION flood in net/http. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-fgq5-q76c-gx78):
go.mod#L1
[existing] Comments in display names are incorrectly handled in net/mail. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-j6m3-gc37-6r6q):
go.mod#L1
[existing] Errors returned from JSON marshaling may break template escaping in html/template. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
osv-scanner(GHSA-rr6r-cfgf-gc6h):
go.mod#L1
[existing] Memory exhaustion in multipart form parsing in net/textproto and net/http. Current version of 'stdlib' is vulnerable: 1.22.0.
|
|
lint
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/cache@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|