Public bug reported: The gogo protobuf module that is being used by the image (version 1.3.1) has a vulnerability:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121 Since this module is bundled (vendorized) inside the source package, we need to update it. ** Affects: telegraf Importance: Unknown Status: Unknown ** Affects: telegraf (Ubuntu) Importance: Medium Assignee: Sergio Durigan Junior (sergiodj) Status: Triaged ** Changed in: telegraf (Ubuntu) Importance: Undecided => Medium ** Bug watch added: github.com/influxdata/telegraf/issues #9181 https://github.com/influxdata/telegraf/issues/9181 ** Also affects: telegraf via https://github.com/influxdata/telegraf/issues/9181 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1925968 Title: gogo protobuf CVE-2021-3121 To manage notifications about this bug go to: https://bugs.launchpad.net/telegraf/+bug/1925968/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
