Skip to content

Update module golang.org/x/crypto to v0.35.0 [SECURITY] #2132

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 12, 2025
Merged

Update module golang.org/x/crypto to v0.35.0 [SECURITY] #2132

merged 1 commit into from
May 12, 2025

Conversation

@stackit-pipeline
Copy link
Contributor

@stackit-pipeline stackit-pipeline commented May 6, 2025

This PR contains the following updates:

Package Type Update Change
golang.org/x/crypto require minor v0.34.0 -> v0.35.0

GitHub Vulnerability Alerts

CVE-2025-22869

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@stackit-pipeline stackit-pipeline added the renovate Renovate dependency updates label May 6, 2025
@stackit-pipeline stackit-pipeline added the renovate Renovate dependency updates label May 6, 2025
@bahkauv70 bahkauv70 added the do-not-merge Do not merge this right now label May 6, 2025
@stackit-pipeline stackit-pipeline force-pushed the renovate/go-golang.org-x-crypto-vulnerability branch 3 times, most recently from 29a8dc1 to ba15457 Compare May 10, 2025 00:51
@bahkauv70 bahkauv70 force-pushed the renovate/go-golang.org-x-crypto-vulnerability branch from ba15457 to 003cbbc Compare May 12, 2025 06:13
@bahkauv70 bahkauv70 merged commit cf32f72 into main May 12, 2025
8 checks passed
@bahkauv70 bahkauv70 deleted the renovate/go-golang.org-x-crypto-vulnerability branch May 12, 2025 08:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@marceljk marceljk Awaiting requested review from marceljk

@Fyusel Fyusel Awaiting requested review from Fyusel

@rubenhoenle rubenhoenle Awaiting requested review from rubenhoenle

1 more reviewer

@bahkauv70 bahkauv70 bahkauv70 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@bahkauv70 bahkauv70

Labels

do-not-merge Do not merge this right now renovate Renovate dependency updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@stackit-pipeline @bahkauv70 @renovate-bot