Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

security: fix CVE-2022-41722 #57274

Open
neild opened this issue Dec 13, 2022 · 3 comments
Open

security: fix CVE-2022-41722 #57274

neild opened this issue Dec 13, 2022 · 3 comments
Assignees
Labels
NeedsFix The path to resolution is known, but the work has not been done. Security
Milestone

Comments

@neild
Copy link
Contributor

neild commented Dec 13, 2022

This is a PRIVATE issue for CVE-2022-41722, tracked in http://b/261991454 and fixed by http://tg/1675249.

@neild neild self-assigned this Dec 13, 2022
@neild
Copy link
Contributor Author

neild commented Dec 13, 2022

@gopherbot please open backport issues. This is a security fix.

@gopherbot
Copy link

Backport issue(s) opened: #57275 (for 1.18), #57276 (for 1.19).

Remember to create the cherry-pick CL(s) as soon as the patch is submitted to master, according to https://go.dev/wiki/MinorReleases.

@seankhliao seankhliao added Security NeedsFix The path to resolution is known, but the work has not been done. labels Dec 26, 2022
@seankhliao seankhliao added this to the Go1.20 milestone Dec 26, 2022
@mdempsky
Copy link
Member

@gopherbot Please backport to 1.20.

@gopherbot gopherbot modified the milestones: Go1.20, Go1.21 Feb 1, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
NeedsFix The path to resolution is known, but the work has not been done. Security
Projects
None yet
Development

No branches or pull requests

4 participants