CVE-2024-24790 - Critical vulnerability in golang

**Describe the bug**
We are using argocd-vault-plugin and Trivy and Twistlock detected a vulnerability with the version 1.81.1. 

It identified a vulnerability on the package net/netip version 1.21.10. 

Please rebuild the binary using at least version 1.21.11 of golang.

[CVE-2024-24790](https://nvd.nist.gov/vuln/detail/CVE-2024-24790)

**To Reproduce**
Steps to reproduce the behavior:

Add argocd-vault-plugin binary in a docker image and run trivy or twistlock for vulnerabilities.

**Expected behavior**
No critical vulnerabilities reported by Trivy.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

CVE-2024-24790 - Critical vulnerability in golang #691

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2024-24790 - Critical vulnerability in golang #691

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions