This release of RHACS 3.74.4 includes a fix for CVE-2023-24540 by building RHACS with updated Golang.
Security Fix(es):
golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)
For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the links listed in the References section.