diff options
author | Lokesh Mandvekar <lsm5@fedoraproject.org> | 2022-04-12 14:13:17 -0400 |
---|---|---|
committer | Lokesh Mandvekar <lsm5@fedoraproject.org> | 2022-04-12 15:23:26 -0400 |
commit | c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8 (patch) | |
tree | 434591b99d925eadbbf7c0c3cfbf466f6bad5b8a /go.mod | |
parent | 62d4f7592375fd197e3aeb1b5a77b003e645c66f (diff) | |
download | podman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.tar.gz podman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.tar.bz2 podman-c02d993f6a88f338c69a4428e4d27e8ae2c7b0b8.zip |
Bump golang.org/x/crypto to 7b82a4e
Resolves: GHSA-8c26-wmh5-6g9v - CVE-2022-27191
Podman doesn't seem to be directly affected as the logic in question
is not called.
golang.org/x/crypto@1baeb1ce contains the actual CVE fix. Using the
latest upstream commit to also include support for SHA-2.
Signed-off-by: Lokesh Mandvekar <lsm5@fedoraproject.org>
Diffstat (limited to 'go.mod')
-rw-r--r-- | go.mod | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -64,7 +64,7 @@ require ( github.com/vbauerster/mpb/v6 v6.0.4 github.com/vishvananda/netlink v1.1.1-0.20201029203352-d40f9887b852 go.etcd.io/bbolt v1.3.6 - golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97 + golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4 golang.org/x/sync v0.0.0-20210220032951-036812b2e83c golang.org/x/sys v0.0.0-20211004093028-2c5d950f24ef gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b |