Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-2876

Fix cxf CVE issues

    XMLWordPrintableJSON

    Details

    • Type: Dependency upgrade
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 7.1.3
    • Fix Version/s: None
    • Component/s: TomEE Build
    • Labels:
      None

      Description

      The following CVE vulnerabilities have been identified in cxf 3.1.18:

      • CVE-2019-12423
      • CVE-2020-1954
      • CVE-2019-12406

      Please consider upgrading to at least v3.3.6 (latest v3.3.7).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jgallimore Jonathan Gallimore
                Reporter:
                leandro.vale Leandro Vale
              • Votes:
                1 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: