Loading...

XML

Word

Printable

Type: Improvement
Resolution: Unresolved
Priority: Medium
Fix Version/s: None
Affects Version/s: None
Component/s: Karaf
Labels:
- pt

The pax-jdbc-features 1.5.6 includes a transitive dependency on com.mysql:mysql-connector-j verion 8.1.0, which introduces a high vulnerability:
https://nvd.nist.gov/vuln/detail/CVE-2023-22102

relates to

ODLPARENT-310 Bump PAX-JDBC version to the latest 1.5.7

In Progress

Assignee:: Peter Suna

Reporter:: Peter Suna

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 12/Mar/24 3:29 PM

Updated:: 26/Mar/24 12:24 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates