sentry-go icon indicating copy to clipboard operation
sentry-go copied to clipboard

Published 20 hours ago verified publisher icon getsentry

Bump fasthttp from 1.6.0 to 1.34.0

Open gpestana opened this issue 2 years ago • 0 comments

From dependabot:

The package github.com/valyala/fasthttp before 1.34.0 is vulnerable to Directory Traversal via the ServeFile function, due to improper sanitization. It is possible to be exploited by using a backslash %5c character in the path. Note: This security issue impacts Windows users only.

Related to https://github.com/getsentry/sentry-go/pull/425

gpestana avatar May 20 '22 11:05 gpestana