diff options
author | Filippo Valsorda <filippo@golang.org> | 2021-12-09 06:13:31 -0500 |
---|---|---|
committer | Alex Rakoczy <alex@golang.org> | 2021-12-09 13:10:36 +0000 |
commit | d0aebe3e74fe14799f97ddd3f01129697c6a290a (patch) | |
tree | b98aa26533e9608973c6baf90a8f24a0172c5c9e /src/go.mod | |
parent | 99950270f3cf52cccc6966d8668ff21b573bb6f5 (diff) | |
download | go-d0aebe3e74fe14799f97ddd3f01129697c6a290a.tar.gz go-d0aebe3e74fe14799f97ddd3f01129697c6a290a.zip |
[release-branch.go1.16] net/http: update bundled golang.org/x/net/http2
Pull in security fix
a5309b3 http2: cap the size of the server's canonical header cache
Updates #50058
Fixes CVE-2021-44716
Change-Id: Ifdd13f97fce168de5fb4b2e74ef2060d059800b9
Reviewed-on: https://go-review.googlesource.com/c/go/+/370575
Trust: Filippo Valsorda <filippo@golang.org>
Run-TryBot: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Alex Rakoczy <alex@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Diffstat (limited to 'src/go.mod')
-rw-r--r-- | src/go.mod | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/go.mod b/src/go.mod index 1040d0506f..977370d265 100644 --- a/src/go.mod +++ b/src/go.mod @@ -4,7 +4,7 @@ go 1.16 require ( golang.org/x/crypto v0.0.0-20201016220609-9e8e0b390897 - golang.org/x/net v0.0.0-20211201233224-64539c132272 + golang.org/x/net v0.0.0-20211209100217-a5309b321dca golang.org/x/sys v0.0.0-20201204225414-ed752295db88 // indirect golang.org/x/text v0.3.4 // indirect ) |