The package is affected by CVE-2020-29652
ywk253100 opened this issue · 1 comments
ywk253100 commented
The package is affected by CVE-2020-29652
It looks like go-autorest is using a vulnerable version of golang.org/x/crypto
jhendrixMSFT commented
Fixed in the following.
- autorest/v0.11.22
- autorest/adal/v0.9.17
- autorest/azure/auth/v0.5.9