Affected versions: v1.8.0, v1.8.1
Binary: usr/local/bin/envoy-gateway (gobinary)
Scanner: Trivy v0.71
Vulnerable dependencies:
| Library |
Installed |
Fix Version |
CVE Count |
| golang.org/x/crypto |
v0.50.0 |
v0.52.0 |
9 HIGH |
| golang.org/x/net |
v0.53.0 |
v0.55.0 |
6 HIGH |
Key CVEs:
Request: Please bump golang.org/x/crypto to v0.52.0+
and golang.org/x/net to v0.55.0+ in the next patch release.
Can we get it fixed ?
Affected versions: v1.8.0, v1.8.1
Binary: usr/local/bin/envoy-gateway (gobinary)
Scanner: Trivy v0.71
Vulnerable dependencies:
Key CVEs:
Request: Please bump golang.org/x/crypto to v0.52.0+
and golang.org/x/net to v0.55.0+ in the next patch release.
Can we get it fixed ?