Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

security: fix CVE-2024-34157 #69140

Closed
rolandshoemaker opened this issue Aug 29, 2024 · 4 comments
Closed

security: fix CVE-2024-34157 #69140

rolandshoemaker opened this issue Aug 29, 2024 · 4 comments
Labels
release-blocker Security
Milestone
Go1.24

Comments

@rolandshoemaker
Copy link
Member

This is a PRIVATE issue for CVE-2024-34157, tracked in http://b/362587476 and fixed by https://go-internal-review.git.corp.google.com/c/go/+/1421.

/cc @golang/security and @golang/release
@rolandshoemaker
Copy link
Member Author

@gopherbot please open backport issues for this security fix.

@gopherbot gopherbot mentioned this issue Aug 29, 2024
Closed
@gopherbot
Copy link
Contributor

Backport issue(s) opened: #69146 (for 1.22), #69147 (for 1.23).

Remember to create the cherry-pick CL(s) as soon as the patch is submitted to master, according to https://go.dev/wiki/MinorReleases.

@gopherbot gopherbot mentioned this issue Aug 29, 2024
Closed
This was referenced Aug 29, 2024
Closed
Closed
@gabyhelp
Copy link

Related Issues and Documentation

(Emoji vote if this was helpful or unhelpful; more detailed feedback welcome in this discussion.)

@gabyhelp gabyhelp mentioned this issue Aug 29, 2024
Closed
@dmitshur dmitshur added this to the Go1.24 milestone Aug 29, 2024
@rolandshoemaker
Copy link
Member Author

This issue is not needed.

@dmitshur dmitshur closed this as not planned Won't fix, can't repro, duplicate, stale Sep 3, 2024
@gabyhelp gabyhelp mentioned this issue Nov 22, 2024
Open
This was referenced Dec 11, 2024
Closed
Closed
@gabyhelp gabyhelp mentioned this issue Jan 10, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
release-blocker Security
Projects
None yet
Milestone
Go1.24
Development

No branches or pull requests
4 participants
@dmitshur @rolandshoemaker @gopherbot @gabyhelp