'[jira] [Resolved] (WSS-665) Add cryptacular dependency and upgrade to 1.2.4 to fix CVE-2020-7226'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jaxme-dev
Subject:    [jira] [Resolved] (WSS-665) Add cryptacular dependency and upgrade to 1.2.4 to fix CVE-2020-7226
From:       "Colm O hEigeartaigh (Jira)" <jira () apache ! org>
Date:       2020-02-19 8:30:00
Message-ID: JIRA.13286158.1582092625000.83933.1582101000502 () Atlassian ! JIRA
[Download RAW message or body]


     [ https://issues.apache.org/jira/browse/WSS-665?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel \
]

Colm O hEigeartaigh resolved WSS-665.
-------------------------------------
    Resolution: Fixed

> Add cryptacular dependency and upgrade to 1.2.4 to fix CVE-2020-7226
> --------------------------------------------------------------------
> 
> Key: WSS-665
> URL: https://issues.apache.org/jira/browse/WSS-665
> Project: WSS4J
> Issue Type: Task
> Components: WSS4J Core
> Affects Versions: 2.2.4
> Reporter: Jim Ma
> Assignee: Colm O hEigeartaigh
> Priority: Major
> Fix For: 2.2.5
> 
> 
> Add the Cryptacular dependency directly into the WSS4J ws-security-common pom and \
> upgrade to 1.2.4 to fix https://nvd.nist.gov/vuln/detail/CVE-2020-7226



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic