Vulnerability CVE-2024-41110
githubdevops24 opened this issue · comments
Message: The vulnerability was found in the Github Security Advisory with vendor severity: Critical
The library github.com/docker/docker version 25.0.5+incompatible was detected in Golang binary located at /awscollector and is vulnerable to CVE-2024-41110, which exists in versions >= 24.0.0, < 26.1.4.
Is there any info on when [aws-otel-collector] github.com/docker/docker v25.0.5+incompatible will be updated to 25.0.6 ?
(https://github.com/aws-observability/aws-otel-collector/tree/311c612da46c22aa0e32d3787dd422bbaba8e83d)
/go.mod
Can you please release a new version to fix this high severity security issue?