Skip to content

[release-4.21] fix: Update google.golang.org/grpc to fix CVE-2026-33186#573

Open
rewantsoni wants to merge 1 commit into
red-hat-storage:release-4.21from
rewantsoni:fix-release-4.21-cve-2026-33186
Open

[release-4.21] fix: Update google.golang.org/grpc to fix CVE-2026-33186#573
rewantsoni wants to merge 1 commit into
red-hat-storage:release-4.21from
rewantsoni:fix-release-4.21-cve-2026-33186

Conversation

@rewantsoni

Copy link
Copy Markdown
Member

Security Fix: CVE-2026-33186

This PR updates vulnerable dependencies to fix CVE-2026-33186.

Changes

  • google.golang.org/grpc: v1.77.01.79.3 (in go.mod)

Testing

  • Unit tests pass
  • Integration tests pass
  • Security scan shows no vulnerabilities

References

@openshift-ci

openshift-ci Bot commented Apr 23, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: rewantsoni
Once this PR has been reviewed and has the lgtm label, please assign leelavg for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@rewantsoni rewantsoni force-pushed the fix-release-4.21-cve-2026-33186 branch 8 times, most recently from 37312f7 to be6c3fd Compare April 23, 2026 11:42
@rewantsoni rewantsoni force-pushed the fix-release-4.21-cve-2026-33186 branch 2 times, most recently from fe2aa5a to cbd4061 Compare June 4, 2026 06:34
Updated the following modules:
- google.golang.org/grpc: v1.77.0 -> 1.79.3 (go.mod)

Signed-off-by: Rewant Soni <resoni@redhat.com>
@rewantsoni rewantsoni force-pushed the fix-release-4.21-cve-2026-33186 branch from cbd4061 to 05ed562 Compare June 4, 2026 06:45
@rewantsoni rewantsoni closed this Jun 4, 2026
@rewantsoni rewantsoni deleted the fix-release-4.21-cve-2026-33186 branch June 4, 2026 08:02
@rewantsoni rewantsoni restored the fix-release-4.21-cve-2026-33186 branch June 9, 2026 05:13
@rewantsoni rewantsoni reopened this Jun 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant