[ZEPPELIN-5028] Upgrade shiro to latest version (1.6.0) to fix existing CVEs - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Duplicate
Affects Version/s: 0.9.0
Fix Version/s: 0.9.0
Component/s: security
Labels:
None

Description

Hi,
We have found lots of Shiro CVE's in zeppelin.Please refer to the url as follow:

https://shiro.apache.org/security-reports.html

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Jeff Yang

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 04/Sep/20 08:17

Updated:: 27/Sep/20 02:35

Resolved:: 27/Sep/20 02:35