upgrade gogo protobuf to v1.3.2

[helenosheaa]

resolves #9181

A known security vulnerability has been addressed in the latest release of gogo/protobuf

[telegraf-tiger]

Looks like new artifacts were built from this PR. Get them here!

Artifact URLs

• darwin_amd64.tar.gz

• windows_amd64.zip

• windows_i386.zip

• armel.rpm

• linux_armel.tar.gz

• armel.deb

• x86_64.rpm

• freebsd_amd64.tar.gz

• linux_amd64.tar.gz

• amd64.deb

• armv6hl.rpm

• linux_armhf.tar.gz

• armhf.deb

• i386.rpm

• freebsd_i386.tar.gz

• linux_i386.tar.gz

• i386.deb

• ppc64le.rpm

• linux_ppc64le.tar.gz

• ppc64el.deb

• linux_mipsel.tar.gz

• mipsel.deb

• linux_mips.tar.gz

• mips.deb

• static_linux_amd64.tar.gz

• s390x.rpm

• linux_s390x.tar.gz

• s390x.deb

• aarch64.rpm

• linux_arm64.tar.gz

• arm64.deb

[telegraf-tiger]

Looks like new artifacts were built from this PR. Get them here!

Artifact URLs

• darwin_amd64.tar.gz

• windows_amd64.zip

• windows_i386.zip

• armel.rpm

• linux_armel.tar.gz

• armel.deb

• ppc64le.rpm

• linux_ppc64le.tar.gz

• ppc64el.deb

• linux_mipsel.tar.gz

• mipsel.deb

• static_linux_amd64.tar.gz

• linux_mips.tar.gz

• mips.deb

• x86_64.rpm

• freebsd_amd64.tar.gz

• linux_amd64.tar.gz

• amd64.deb

• armv6hl.rpm

• linux_armhf.tar.gz

• armhf.deb

• s390x.rpm

• linux_s390x.tar.gz

• s390x.deb

• i386.rpm

• freebsd_i386.tar.gz

• linux_i386.tar.gz

• i386.deb

• aarch64.rpm

• linux_arm64.tar.gz

• arm64.deb

[Emeka-MSFT]

@helenosheaa , the go.sum file contains references to the older protobuf versions.

Does this mean that Telegraf depends on components that required/use the older/vulnerable versions?

If this is correct, then would these Telegraf dependencies need to be updated as well?

[Emeka-MSFT]

FYI: opened opened #10581