github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
32f6e6c8aa
containerd/vendor/golang.org/x/sys/windows
History
Sebastiaan van Stijn 662d8a085e
vendor: golang.org/x/net v0.4.0 
golang.org/x/net contains a fix for CVE-2022-41717, which was addressed
in stdlib in go1.19.4 and go1.18.9;

> net/http: limit canonical header cache by bytes, not entries
>
> An attacker can cause excessive memory growth in a Go server accepting
> HTTP/2 requests.
>
> HTTP/2 server connections contain a cache of HTTP header keys sent by
> the client. While the total number of entries in this cache is capped,
> an attacker sending very large keys can cause the server to allocate
> approximately 64 MiB per open connection.
>
> This issue is also fixed in golang.org/x/net/http2 v0.4.0,
> for users manually configuring HTTP/2.

full diff: https://github.com/golang/net/compare/c63010009c80...v0.4.0

other dependency updates (due to (circular) dependencies between them):

- golang.org/x/sys v0.3.0: https://github.com/golang/sys/compare/v0.2.0...v0.3.0
- golang.org/x/term v0.3.0: https://github.com/golang/term/compare/v0.1.0...v0.3.0
- golang.org/x/text v0.5.0: https://github.com/golang/text/compare/v0.4.0...v0.5.0

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2022-12-07 22:20:44 +01:00
..
registry go.mod: github.com/moby/sys/mountinfo v0.6.2 2022-06-08 13:25:08 +09:00
svc go.mod: github.com/moby/sys/mountinfo v0.6.2 2022-06-08 13:25:08 +09:00
aliases.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
dll_windows.go Update continuity 2020-12-04 11:49:26 -08:00
empty.s Support SIGRTMIN+n signals 2021-07-26 09:36:43 -07:00
env_windows.go vendor: golang.org/x/sys v0.0.0-20200622214017-ed371f2e16b4 2020-08-11 09:57:43 +02:00
eventlog.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
exec_windows.go go.mod: github.com/moby/sys/mountinfo v0.6.2 2022-06-08 13:25:08 +09:00
memory_windows.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
mkerrors.bash go.mod: github.com/Microsoft/hcsshim v0.8.16 2021-04-09 09:12:12 +02:00
mkknownfolderids.bash Go mod vendor 2020-12-01 01:41:25 +08:00
mksyscall.go Upgrade OpenTelemetry dependencies 2021-12-16 22:35:57 +00:00
race0.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
race.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
security_windows.go add runc shim support for sched core 2021-10-08 16:18:09 +00:00
service.go Upgrade OpenTelemetry dependencies 2021-12-16 22:35:57 +00:00
setupapi_windows.go go.mod, vendor: bump golang.org/x/sys to latest version 2022-08-30 10:38:20 +02:00
str.go go.mod: golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359 2021-11-05 13:03:15 +01:00
syscall_windows.go vendor: golang.org/x/net v0.4.0 2022-12-07 22:20:44 +01:00
syscall.go Upgrade fuzzing-related packages to reduce dependencies 2022-09-15 23:25:03 +00:00
types_windows_386.go vendor: containerd/console v1.0.1 2020-09-24 23:34:18 +02:00
types_windows_amd64.go vendor: containerd/console v1.0.1 2020-09-24 23:34:18 +02:00
types_windows_arm64.go go.mod: github.com/Microsoft/hcsshim v0.8.16 2021-04-09 09:12:12 +02:00
types_windows_arm.go vendor: containerd/console v1.0.1 2020-09-24 23:34:18 +02:00
types_windows.go go.mod: golang.org/x/*: use tagged versions 2022-11-03 10:18:31 +09:00
zerrors_windows.go go.mod: github.com/Microsoft/hcsshim v0.8.16 2021-04-09 09:12:12 +02:00
zknownfolderids_windows.go bump x/sys to fix riscv64 epoll 2019-08-12 11:43:53 -03:00
zsyscall_windows.go vendor: golang.org/x/net v0.4.0 2022-12-07 22:20:44 +01:00