Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Critical vulnerability in gogo-protobuf used by client-go #927

Closed
AvniWala-AWN opened this issue Jan 27, 2021 · 3 comments · Fixed by kubernetes/kubernetes#98477
Closed

Critical vulnerability in gogo-protobuf used by client-go #927

AvniWala-AWN opened this issue Jan 27, 2021 · 3 comments · Fixed by kubernetes/kubernetes#98477

Comments

@AvniWala-AWN
Copy link

client-go uses gogo-protobuf (v1.3.1) which has a critical vulnerability as reported here:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Checked in client-go v0.18.6, but the same gogo-protobuf version: 1.3.1 is used in later releases as well.
@nikhita nikhita mentioned this issue Jan 27, 2021
Closed
@prashilgupta
Copy link

+1

@nikhita
Copy link
Member

nikhita commented Jan 27, 2021

@AvniWala-Sophos thanks for the issue!

v1.3.2 of gogo/protobuf contains the fix but it also includes a version bump for golang.org/x/tools, which is not desirable for k8s - gogo/protobuf@v1.3.1...v1.3.2

I have created gogo/protobuf#721 to revert the version change for golang.org/x/tools.

cc @dims @liggitt @palnabarun

@palnabarun palnabarun mentioned this issue Jan 27, 2021
Merged
palnabarun added a commit to palnabarun/kubernetes that referenced this issue Jan 27, 2021
@palnabarun
update gogo/protobuf to v1.3.2
9cada2e 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>
@prashilgupta
Copy link

When and in which release will this be available?

k8s-publishing-bot pushed a commit to kubernetes/code-generator that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
4f6c91d 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/apimachinery that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
9812d82 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/api that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
772b5cb 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
2861152 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: #927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/component-base that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
5858a75 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/component-helpers that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
9242b44 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/apiserver that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
e124622 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kube-aggregator that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
d7bd715 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/sample-apiserver that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
0ffeb28 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/sample-controller that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a109899 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/apiextensions-apiserver that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
d0725a3 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/metrics that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
bad2ab2 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/cli-runtime that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
342f0e1 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/sample-cli-plugin that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
e9fc8f5 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kube-proxy that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
5873055 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kubelet that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
916f97b 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kube-scheduler that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
914c2a3 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/controller-manager that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
7ab48ca 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/cloud-provider that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
783471d 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kube-controller-manager that referenced this issue Feb 2, 2021
@palnabarun @k8s-publishing-bot
update gogo/protobuf to v1.3.2
1bdb2fe 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
k8s-publishing-bot pushed a commit to kubernetes/kubelet that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a1ec286 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/kubelet that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
babb58f 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/kubelet that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
42f28f1 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/kube-scheduler that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
42f1511 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/kube-scheduler that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
562f1ec 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/kube-scheduler that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
424f05f 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/controller-manager that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
1a767c6 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/cloud-provider that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a927fd5 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/cloud-provider that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
d86c4c7 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/cloud-provider that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
ae599c6 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/kube-controller-manager that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
e8579a7 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/kube-controller-manager that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
0661a85 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/kube-controller-manager that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
09ada45 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/cluster-bootstrap that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
789e31c 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/cluster-bootstrap that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
0db9961 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/cluster-bootstrap that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
e8c3a4c 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/csi-translation-lib that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a442363 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/csi-translation-lib that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
6ac559d 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/csi-translation-lib that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
9474ef5 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/legacy-cloud-providers that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a06798a 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/legacy-cloud-providers that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
a8c6272 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/legacy-cloud-providers that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
1ff9102 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/cri-api that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
3489631 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/cri-api that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
1ddc2e6 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/cri-api that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
4e21572 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
k8s-publishing-bot pushed a commit to kubernetes/kubectl that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
f225bff 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: f54f378b2be6a7a2a1b34d8cefbba799126a05bb
k8s-publishing-bot pushed a commit to kubernetes/kubectl that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
bbc32ec 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: 15596cedd26c3afacf719a92c79c28e51051a959
k8s-publishing-bot pushed a commit to kubernetes/kubectl that referenced this issue Mar 29, 2021
@joelsmith @k8s-publishing-bot
update gogo/protobuf to v1.3.2
8ce3d26 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: kubernetes/client-go#927

Kubernetes-commit: c4ddcc9fb222110c37340e7786e10bed52c51752
This was referenced Apr 13, 2021
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update gogo/protobuf to v1.3.2 palnabarun/kubernetes
3 participants
@prashilgupta @nikhita @AvniWala-AWN