[Bug 1232983] VUL-0: CVE-2024-51744: forgejo: github.com/golang-jwt/jwt/v4: Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt

27 Nov 2024


      https://bugzilla.suse.com/show_bug.cgi?id=1232983
https://bugzilla.suse.com/show_bug.cgi?id=1232983#c2

--- Comment #2 from Tuukka Pasanen <tuukka.pasanen@ilmi.fi> ---
I think openSUSE Leap 15.5 does include Forgejo version. Newest release 9.0.2
have changed to google-awt 5.2.1 which should not be affected with this CVE.
-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 1232983] VUL-0: CVE-2024-51744: forgejo: github.com/golang-jwt/jwt/v4: Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt

bugzilla_noreply＠suse.com