Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[release-3.5] Bump golang.org/x/crypto to v0.17+ to address CVE-2023-48795 #17346

Merged
merged 1 commit into from
Jan 31, 2024

Conversation

serathius
Copy link
Member

Ref #17345

@serathius serathius force-pushed the crypto-3.5 branch 2 times, most recently from 575e231 to 742d3e4 Compare January 30, 2024 10:54
@serathius serathius changed the title Bump golang.org/x/crypto to v0.17.0 to address CVE-2023-48795 [release-3.5] Bump golang.org/x/crypto to v0.17+ to address CVE-2023-48795 Jan 30, 2024
This is the minimal set of package updates I get after running:

./scripts/update_dep.sh golang.org/x/crypto v0.17.0
make

Signed-off-by: Marek Siarkowicz <[email protected]>
server/go.mod Show resolved Hide resolved
@serathius serathius merged commit 378a196 into etcd-io:release-3.5 Jan 31, 2024
15 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

2 participants