Open bpfoster opened 5 days ago
Loki 3.0.0
CVE-2024-24790 has been published against the go stdlib net/netip.
net/netip
https://pkg.go.dev/vuln/GO-2024-2887
Resolved in go 1.21.11 or 1.22.4. Loki 3.0.0 showing as built with a vulnerable go 1.21.9
We would very much appreciate the fix :-)
Loki 3.0.0
CVE-2024-24790 has been published against the go stdlib
net/netip
.https://pkg.go.dev/vuln/GO-2024-2887
Resolved in go 1.21.11 or 1.22.4. Loki 3.0.0 showing as built with a vulnerable go 1.21.9