There is a security issue with google.golang.org/protobuf:
https://nvd.nist.gov/vuln/detail/CVE-2024-24786
It was fixed with this commit:
protocolbuffers/protobuf-go@f01a588
So, google.golang.org/protobuf should be upgraded to 1.33.0.
Also, github.com/golang/protobuf version 1.5.4 uses the fixed version of google.golang.org/protobuf. That should be upgraded too.
There is a security issue with google.golang.org/protobuf:
https://nvd.nist.gov/vuln/detail/CVE-2024-24786
It was fixed with this commit:
protocolbuffers/protobuf-go@f01a588
So, google.golang.org/protobuf should be upgraded to 1.33.0.
Also, github.com/golang/protobuf version 1.5.4 uses the fixed version of google.golang.org/protobuf. That should be upgraded too.