[Vulnerability: GO-2024-2682] Denial of service via connection starvation in github.com/quic-go/quic-go

[iTanken]

go run golang.org/x/vuln/cmd/govulncheck@latest ./...

• Output:

  === Symbol Results ===

  Vulnerability ＃1: GO-2024-2682 Denial of service via connection starvation in github.com/quic-go/quic-go

  • More info: https://pkg.go.dev/vuln/GO-2024-2682
  • Module: github.com/quic-go/quic-go
    • Found in: github.com/quic-go/[email protected]
    • Fixed in: github.com/quic-go/[email protected]

[mancej]

This is an issue for us as well, please fix!

[imroc]

quic-go is already upgraded, so close it