Project

General

Profile

Actions
Copy link

Bug #23495

closed

Update jgit to remove CVE-2023-4759 error message

Added by Vincent MEMBRÉ about 1 year ago. Updated about 1 year ago.

Status:
Released
Priority:
N/A
Assignee:
Alexis Mousset
Category:
-
Target version:
8.0.0~beta3
Pull Request:
https://github.com/Normation/rudder/p...
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
No

Description

CVE-2023-4759 triggers our dependency check alerts because we use jgit 6.6.0 that is sensible to it, even if we are not bothered by it

updating at least to 6.6.1 fix the issue:

Actions
Copy link
 #1

Updated by Vincent MEMBRÉ about 1 year ago

  • Status changed from New to In progress
  • Assignee set to Vincent MEMBRÉ
Actions
Copy link
 #2

Updated by Vincent MEMBRÉ about 1 year ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Vincent MEMBRÉ to Alexis Mousset
  • Pull Request set to https://github.com/Normation/rudder/pull/5061
Actions
Copy link
 #3

Updated by Anonymous about 1 year ago

  • Status changed from Pending technical review to Pending release
Actions
Copy link
 #4

Updated by Vincent MEMBRÉ about 1 year ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 8.0.0~beta3 which was released today.

Actions
Copy link

Also available in: Atom PDF