Backport of NET-10288-Bump-go-to-resolve-CVE-2024-24791 into release/1.19.x (#21513)

* backport of commit 764532e82c * backport of commit 61ee7f8d52 * backport of commit d7da6ce5fe --------- Co-authored-by: Sarah Alsmiller <sarah.alsmiller@hashicorp.com> Co-authored-by: sarahalsmiller <100602640+sarahalsmiller@users.noreply.github.com>
2024-07-03 11:07:01 -07:00 · 2024-07-03 11:07:01 -07:00 · 32938b1abc
parent 1e3ea57e0a
commit 32938b1abc
3 changed files with 5 additions and 2 deletions
--- a/.changelog/21507.txt
+++ b/.changelog/21507.txt
@ -0,0 +1,3 @@
+```release-note:security
+Upgrade go version to 1.22.5 to address [CVE-2024-24791](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24791)
+```
--- a/.go-version
+++ b/.go-version
@ -1 +1 @@
-1.22.4
+1.22.5
--- a/go.mod
+++ b/go.mod
@ -2,7 +2,7 @@ module github.com/hashicorp/consul

 go 1.20

-toolchain go1.22.4
+toolchain go1.22.5

 replace (
 	github.com/hashicorp/consul/api => ./api
 @ -1 +1 @@
 .22.4
 .22.5