gin icon indicating copy to clipboard operation
gin copied to clipboard

Published 20 hours ago verified publisher icon gin-gonic

Vulnerability in golang.org/x/net/http2 version < 0.23.0

Open yinonel opened this issue 1 year ago • 2 comments
trafficstars

https://security.snyk.io/vuln/SNYK-GOLANG-GOLANGORGXNETHTTP2-6531285 This issue is caused by the usage of package golang.org/x/net/http2 in version < 0.23.0. Vulnerability is allocation of resources without limits or throttling

  • gin version (or commit ref): 1.9.1

yinonel avatar May 01 '24 09:05 yinonel

Hi @yinonel, please check this PL #3920, the code update is done, but await approved!

LuizWeitz avatar May 01 '24 10:05 LuizWeitz

@yinonel Can you close this now that #3950 was merged?

codespearhead avatar May 07 '24 02:05 codespearhead

Fixed in v1.10.0 version.

appleboy avatar May 07 '24 09:05 appleboy