summaryrefslogtreecommitdiff
path: root/go.mod
diff options
context:
space:
mode:
authorLokesh Mandvekar <lsm5@fedoraproject.org>2022-04-12 14:13:17 -0400
committerLokesh Mandvekar <lsm5@fedoraproject.org>2022-04-12 15:23:26 -0400
commitc02d993f6a88f338c69a4428e4d27e8ae2c7b0b8 (patch)
tree434591b99d925eadbbf7c0c3cfbf466f6bad5b8a /go.mod
parent62d4f7592375fd197e3aeb1b5a77b003e645c66f (diff)
downloadpodman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.tar.gz
podman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.tar.bz2
podman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.zip
Bump golang.org/x/crypto to 7b82a4e
Resolves: GHSA-8c26-wmh5-6g9v - CVE-2022-27191 Podman doesn't seem to be directly affected as the logic in question is not called. golang.org/x/crypto@1baeb1ce contains the actual CVE fix. Using the latest upstream commit to also include support for SHA-2. Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>
Diffstat (limited to 'go.mod')
-rw-r--r--go.mod2
1 files changed, 1 insertions, 1 deletions
diff --git a/go.mod b/go.mod
index 2be3a2678..cc0f61f15 100644
--- a/go.mod
+++ b/go.mod
@@ -64,7 +64,7 @@ require (
github.com/vbauerster/mpb/v6 v6.0.4
github.com/vishvananda/netlink v1.1.1-0.20201029203352-d40f9887b852
go.etcd.io/bbolt v1.3.6
- golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97
+ golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4
golang.org/x/sync v0.0.0-20210220032951-036812b2e83c
golang.org/x/sys v0.0.0-20211004093028-2c5d950f24ef
gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b