Skip to content

security: fix CVE-2023-45288 #66297

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
rolandshoemaker opened this issue Mar 13, 2024 · 3 comments
Closed

security: fix CVE-2023-45288 #66297

rolandshoemaker opened this issue Mar 13, 2024 · 3 comments
Labels
FrozenDueToAge NeedsFix The path to resolution is known, but the work has not been done. Security
Milestone
Go1.23

Comments

@rolandshoemaker
Copy link
Member

This is a PRIVATE issue for CVE-2023-45288, tracked in http://b/319262343.

/cc @golang/security and @golang/release
@rolandshoemaker
Copy link
Member Author

@gopherbot please open backport issues.

@gopherbot gopherbot mentioned this issue Mar 13, 2024
Closed
@gopherbot
Copy link
Contributor

Backport issue(s) opened: #65387 (for 1.21), #66298 (for 1.22).

Remember to create the cherry-pick CL(s) as soon as the patch is submitted to master, according to https://go.dev/wiki/MinorReleases.

@cherrymui cherrymui added the NeedsFix The path to resolution is known, but the work has not been done. label Mar 14, 2024
@cherrymui cherrymui added this to the Go1.23 milestone Mar 14, 2024
@neild neild mentioned this issue Mar 27, 2024
Closed
@neild
Copy link
Contributor

neild commented Mar 27, 2024

Duplicate of #65051

@neild neild marked this as a duplicate of #65051 Mar 27, 2024
@neild neild closed this as completed Mar 27, 2024
@dmitshur dmitshur closed this as not planned Won't fix, can't repro, duplicate, stale Mar 27, 2024
This was referenced Aug 29, 2024
Closed
Closed
Closed
Closed
@gabyhelp gabyhelp mentioned this issue Nov 22, 2024
Closed
This was referenced Dec 11, 2024
Closed
Closed
@gabyhelp gabyhelp mentioned this issue Jan 10, 2025
Closed
@golang golang locked and limited conversation to collaborators Mar 27, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
FrozenDueToAge NeedsFix The path to resolution is known, but the work has not been done. Security
Projects
None yet
Milestone
Go1.23
Development

No branches or pull requests
5 participants
@neild @dmitshur @rolandshoemaker @gopherbot @cherrymui