chore(readme): update security patches

Signed-off-by: Frederico Araujo <[email protected]>
sysflow-telemetry · Sep 29, 2023 · 3366ff2 · 3366ff2
1 parent bd9b269
commit 3366ff2
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -27,6 +27,14 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/).
 - Bumped UBI version to 9.2-755
 - Bump sf-apis to 0.6.0
 
+### Security
+
+- CVE-2022-41723: golang.org/x/net Uncontrolled Resource Consumption (updated to 0.7.0)
+- CVE-2022-27664: golang.org/x/net/http2 Denial of Service vulnerability (updated to 0.0.0-20220906165146-f3363e06e74c)
+- CVE-2022-32149: Denial of service in golang.org/x/text/language (updated to 0.3.8)
+- CVE-2022-41721: golang.org/x/net/http2/h2c vulnerable to request smuggling attack (updated to 0.1.1-0.20221104162952-702349b0e862)
+- CVE-2022-28948: gopkg.in/yaml.v3 Denial of Service (updated to 3.0.0-20220521103104-8f96da9f5d5e)
+
 ## [0.5.1] - 2023-06-07
 
 ### Added