Update OPA for CVE-2024-24783 for AWS (!478) · Merge requests · OSDU Software / OSDU Data Platform / Security and Compliance / Policy · GitLab

Shane Hutchins requested to merge CVE-2024-24783 into master Mar 06, 2024

Upgrading OPA to 0.62.1 CVE-2024-24783 (https://pkg.go.dev/vuln/GO-2024-2598).

See https://github.com/open-policy-agent/opa/releases/tag/v0.62.1
If you’re not doing TLS / arbitrary http.send, it might not apply to you to
Additionally CVE-2023-6246, CVE-2023-6779 may also be involved.

Edited Mar 06, 2024 by Shane Hutchins