chore(deps): update module golang.org/x/sys to v0.44.0 [security]#2071
Conversation
|
|
1 similar comment
|
|
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #2071 +/- ##
=======================================
Coverage 32.64% 32.64%
=======================================
Files 77 77
Lines 7135 7135
=======================================
Hits 2329 2329
Misses 4610 4610
Partials 196 196 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
3e3697e to
6cd9118
Compare
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
6cd9118 to
545e148
Compare
This PR contains the following updates:
v0.43.0→v0.44.0Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows
CVE-2026-39824 / GO-2026-5024
More information
Details
NewNTUnicodeString does not check for string length overflow. When provided with a string that overflows the maximum size of a NTUnicodeString (a 16-bit number of bytes), it returns a truncated string rather than an error.
Severity
Unknown
References
This data is provided by OSV and the Go Vulnerability Database (CC-BY 4.0).
Configuration
📅 Schedule: (UTC)
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.