Closed rahulguptajss closed 2 weeks ago
Vulnerability #1: GO-2024-2963 Denial of service due to improper 100-continue handling in net/http More info: https://pkg.go.dev/vuln/GO-2024-2963 Standard library Found in: net/http@go1.22.4 Fixed in: net/http@go1.22.5 Example traces found: Error: #1: cmd/poller/poller.go:1117:31: poller.Poller.publishDetails calls http.Client.CloseIdleConnections Error: #2: cmd/exporters/influxdb/influxdb.go:211:32: influxdb.InfluxDB.Emit calls http.Client.Do Error: #3: cmd/harvest/version/version.go:105:25: version.latestRelease calls http.Client.Get Error: #4: cmd/tools/doctor/compareZapiRest.go:46:23: doctor.fetchMetrics calls http.Get Error: #5: cmd/tools/rest/client.go:285:43: rest.downloadSwagger calls httputil.DumpRequestOut, which calls http.Transport.CloseIdleConnections Error: #6: cmd/tools/rest/client.go:285:43: rest.downloadSwagger calls httputil.DumpRequestOut, which calls http.Transport.RoundTrip
Your code is affected by 1 vulnerability from the Go standard library.
Vulnerability #1: GO-2024-2963 Denial of service due to improper 100-continue handling in net/http More info: https://pkg.go.dev/vuln/GO-2024-2963 Standard library Found in: net/http@go1.22.4 Fixed in: net/http@go1.22.5 Example traces found: Error: #1: cmd/poller/poller.go:1117:31: poller.Poller.publishDetails calls http.Client.CloseIdleConnections Error: #2: cmd/exporters/influxdb/influxdb.go:211:32: influxdb.InfluxDB.Emit calls http.Client.Do Error: #3: cmd/harvest/version/version.go:105:25: version.latestRelease calls http.Client.Get Error: #4: cmd/tools/doctor/compareZapiRest.go:46:23: doctor.fetchMetrics calls http.Get Error: #5: cmd/tools/rest/client.go:285:43: rest.downloadSwagger calls httputil.DumpRequestOut, which calls http.Transport.CloseIdleConnections Error: #6: cmd/tools/rest/client.go:285:43: rest.downloadSwagger calls httputil.DumpRequestOut, which calls http.Transport.RoundTrip
Your code is affected by 1 vulnerability from the Go standard library.