Source: golang-github-emicklei-go-restful X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security
Hi, The following vulnerability was published for golang-github-emicklei-go-restful. CVE-2022-1996[0]: | Authorization Bypass Through User-Controlled Key in GitHub repository | emicklei/go-restful prior to v3.8.0. https://huntr.dev/bounties/be837427-415c-4d8c-808b-62ce20aa84f1/ https://github.com/emicklei/go-restful/commit/fd3c327a379ce08c68ef18765bdc925f5d9bad10 If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2022-1996 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1996 Please adjust the affected versions in the BTS as needed.
