Uploaded image for project: 'James Server'
  1. James Server
  2. JAMES-3593

Recommand RabbitMQ upgrade - prior 3.8.16 has multiple CVE

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 3.6.0
    • 3.7.0
    • rabbitmq
    • None

    Description

      According to https://www.rabbitmq.com/changelog.html RabbitMQ prior this version is subject to several CVE:

      We currently recommend running on `3.8.3`...

      We should:

      • [ ] Test James against RabbitMQ 3.8.16 (update the image in apache/james-project and getting a green build is enough)
      • [ ] Recommand the upgrade in update instructions and changelog
      • [ ] Check the documentation

      Attachments

        Activity

          People

            Unassigned Unassigned
            btellier Benoit Tellier
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 40m
                40m