[GODRIVER-1675] Ensure driver relies on x/text version 0.3.3 or higher to address security vulnerability Created: 07/Jul/20 Updated: 28/Oct/23 Resolved: 07/Jul/20 |
|
| Status: | Closed |
| Project: | Go Driver |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | 1.3.5 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Divjot Arora (Inactive) | Assignee: | Divjot Arora (Inactive) |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Description |
|
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14040 describes a security vulnerability in the x/text package. We should upgrade to version the latest stable version. The vulnerability was fixed in v0.3.3 according to the CVE. |
| Comments |
| Comment by Githook User [ 07/Jul/20 ] |
|
Author: {'name': 'Divjot Arora', 'email': 'divjot.arora@10gen.com', 'username': 'divjotarora'}Message: |
| Comment by Githook User [ 07/Jul/20 ] |
|
Author: {'name': 'Divjot Arora', 'email': 'divjot.arora@10gen.com', 'username': 'divjotarora'}Message: This was necessary to update the vendored version of x/text. |
| Comment by Githook User [ 07/Jul/20 ] |
|
Author: {'name': 'Divjot Arora', 'email': 'divjot.arora@10gen.com', 'username': 'divjotarora'}Message: |
| Comment by Divjot Arora (Inactive) [ 07/Jul/20 ] |