cf-dev@lists.cloudfoundry.org | cf-deployment minor release v13.7.0 contains vulnerability fix CVE-2020-15586

Home Messages Hashtags Subgroups

Date Date 1 - 1 of 1

cf-deployment minor release v13.7.0 contains vulnerability fix CVE-2020-15586

Saikiran Yerram

Notice

routing-release.0.203.0 release includes a fix to a security vulnerability. We recommend you upgrade your deployments immediately.

Security: Fix for CVE-2020-15586 Bump golang to version 1.14.5 with a fix in the net/http/httputil package for an issue that could cause the Gorouter to crash if a malicious client sends specially crafted HTTP requests.

cf-deployment release: https://github.com/cloudfoundry/cf-deployment/releases/tag/v13.7.0

routing-release.0.203.0: https://github.com/cloudfoundry/routing-release/releases/tag/0.203.0

If you have any questions, please reach out to us in #release-integration slack channel.

1 - 1 of 1

Previous Topic Next Topic