Loading...

XML

Word

Printable

Type: Improvement
Resolution: Done
Priority: Medium
Fix Version/s: 13.1.0
Affects Version/s: None
Component/s: Karaf
Labels:
- pt

The pax-jdbc-features 1.5.6 includes a transitive dependency on Derby version 10.14.2.0, which introduces a critical vulnerability:

https://nvd.nist.gov/vuln/detail/CVE-2022-46337

relates to

ODLPARENT-311 Bump Derby to 10.17.x

Open

ODLPARENT-309 Rework odl-karaf-feat-jdbc feature to be more lightweight

In Progress

Assignee:: Peter Suna

Reporter:: Peter Suna

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 12/Mar/24 3:19 PM

Updated:: 14/Apr/24 7:37 AM

Resolved:: 14/Apr/24 7:37 AM