New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update github.com/miekg/dns to pick up fix for CVE-2019-19794. #97405
Conversation
@dlorenc: This issue is currently awaiting triage. If a SIG or subproject determines this is a relevant issue, they will accept it by applying the The Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
I noticed this was out of date using 'snyk test' on the main repository.
This should be ready for review |
it is not, the only places this dependency is used is in test/e2e code and in pkg/proxy/winuserspace/proxysocket.go to decode a DNS request. Ideally we could drop this dependency completely. I'll defer to sig-network and sig-windows to review the update /sig network windows |
/approve /hold for network/windows review |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: dlorenc, liggitt The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
I've added the e2e dependency, but it just uses a helper function that can be copied, but it seems that there was some discussion with the winproxy dependency and is not clear to me the conclusion. /hold |
@aojea how about we merge and iterate? |
yep, the windows dependency doesn't seem to be resolved soon :) |
/hold cancel |
Thanks! I took a look at the windows dependency and it seems pretty small (one struct, |
/lgtm |
What type of PR is this?
/kind cleanup
What this PR does / why we need it:
I noticed this was out of date using 'snyk test' on the main repository.
More info is available here: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMIEKGDNS-537825
I don't think the codepath in question is used directly here, but I'm not 100% sure.
Which issue(s) this PR fixes:
Special notes for your reviewer:
Does this PR introduce a user-facing change?:
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: