gin icon indicating copy to clipboard operation
gin copied to clipboard
verified publisher icon gin-gonic

CVEs in gabriel-vasile/mimetype package

Open AndrewYEEE opened this issue 1 year ago • 2 comments

Description

source: https://github.com/gabriel-vasile/mimetype/issues/601

There are many CVEs (~180+) reported for stdlib which is used in sample32.macho and sample64.macho test files on gabriel-vasile/mimetype package。

This vulnerability will be scanned together with gin. Is there any way to improve it?

AndrewYEEE avatar Nov 04 '24 02:11 AndrewYEEE

already fix in github.com/gabriel-vasile/[email protected], please update go module, thanks~

AndrewYEEE avatar Nov 05 '24 10:11 AndrewYEEE

Could you please update the module to 1.4.8 to pick up the fix for CVE-2024-45338 https://github.com/gabriel-vasile/mimetype/pull/623

ddl-joyce-zhao avatar Jan 08 '25 16:01 ddl-joyce-zhao