Skip to content

cloud-sql-connectors/cloud-sql-proxy golang.org/x/crypto is vulnerable to fixable critical severity CVE-2024-45337 #2358

Closed
Closed
cloud-sql-connectors/cloud-sql-proxy golang.org/x/crypto is vulnerable to fixable critical severity CVE-2024-45337#2358
Assignees
jackwotherspoon
Labels
priority: p2Moderately-important priority. Fix may not be included in next release.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.
@danekantner

Description

@danekantner
danekantner
opened on Jan 13, 2025

Bug Description

cloud-sql-connectors/cloud-sql-proxy golang.org/x/crypto is vulnerable to fixable critical severity CVE-2024-45337

Example code (or command)

// paste your code or command here

Stacktrace



Steps to reproduce?


Scan latest image gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.14.2 using any vulnerability scanner


Environment


gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.14.2 (this was released Dec 11 and is latest available)


Additional Details


No response
Metadata
Metadata
Assignees
Labels
priority: p2Moderately-important priority. Fix may not be included in next release.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.
Type
No type
Projects
No projects
Milestone
No milestone
Relationships
None yet
Development
No branches or pull requests
Issue actions