update to go1.23.7

mirror of https://github.com/moby/moby.git synced 2026-01-11 18:51:37 +00:00

- https://github.com/golang/go/issues?q=milestone%3AGo1.23.7+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.23.6...go1.23.7

These minor releases include 1 security fixes following the security policy:

net/http, x/net/proxy, x/net/http/httpproxy: proxy bypass using IPv6 zone IDs

Matching of hosts against proxy patterns could improperly treat an IPv6
zone ID as a hostname component. For example, when the NO_PROXY
environment variable was set to "*.example.com", a request to
"[::1%25.example.com]:80` would incorrectly match and not be proxied.

Thanks to Juho Forsén of Mattermost for reporting this issue.

This is CVE-2025-22870 and Go issue https://go.dev/issue/71984.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.23.7

Signed-off-by: Paweł Gronowski <pawel.gronowski@docker.com>

This commit is contained in:

Paweł Gronowski

2025-03-04 22:57:35 +01:00

parent 65c2f799b4

commit 5f912e4cf5

12 changed files with 12 additions and 12 deletions

									
										2

.github/workflows/arm64.yml
									
										vendored
									
												View File
												
				@@ -23,7 +23,7 @@ on:

				  pull_request:

				env:

				  GO_VERSION: "1.23.6"

				  GO_VERSION: "1.23.7"

				  TESTSTAT_VERSION: v0.1.25

				  DESTDIR: ./build

				  SETUP_BUILDX_VERSION: edge

update to go1.23.7

2 .github/workflows/arm64.yml vendored Unescape Escape View File

2

.github/workflows/arm64.yml vendored

View File