Summary
Trivy scanner is reporting CVE-2024-24788 for a while now (using the official Docker image for v1.57.0).
So this in fact an already publicly known issue (in Go) but since I haven't seen any update to Go 1.22.3 or above for jaeger, I would like to raise awareness with this report.
Apologies if this causes too much noise.
Details
See link above.
PoC
n/a
Impact
Unknown actual impact for jaeger.
Summary
Trivy scanner is reporting CVE-2024-24788 for a while now (using the official Docker image for v1.57.0).
So this in fact an already publicly known issue (in Go) but since I haven't seen any update to Go 1.22.3 or above for jaeger, I would like to raise awareness with this report.
Apologies if this causes too much noise.
Details
See link above.
PoC
n/a
Impact
Unknown actual impact for jaeger.