Uploaded image for project: 'Slider'
  1. Slider
  2. SLIDER-1091

Upgrade test-time dependency on Groovy to 2.4.4

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • Slider 0.90.2
    • Slider 0.90.2
    • build, security, test
    • None

    Description

      CVE-2015-3253 means that the groovy version we use for tests must be considered insecure.

      There is no vulnerability in Slider release: We don't distribute groovy. Nor we do any object serialization, which is the vulnerability. However, we should upgrade anyway

      Attachments

        Issue Links

          duplicates

          Improvement - An improvement or enhancement to an existing feature or task. SLIDER-960 switch to groovy 2.4.4 (the ASF edition)

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              stevel@apache.org Steve Loughran
              stevel@apache.org Steve Loughran
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: