From 36045ad8195ab8e03bac6afdcd155aecd2dae4d3 Mon Sep 17 00:00:00 2001
From: Zhiqiang Fang <zfang@zfang-thinkpadt14gen6.ibmlowe.csb>
Date: Thu, 26 Mar 2026 23:25:02 -0400
Subject: [PATCH] Update Go version to 1.24.12 to fix CVE-2025-61726

This addresses CVE-2025-61726 (memory exhaustion in net/url query
parameter parsing) by updating from Go 1.24.3 to 1.24.12.

Fixes: OCPBUGS-75754

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
---
 go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index 9ac7fc524..cb42de6b9 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module github.com/openshift/dpu-operator
 
-go 1.24.3
+go 1.24.12
 
 require (
 	github.com/containernetworking/cni v1.2.3