[ https://issues.apache.org/jira/browse/TOMEE-4205?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Richard Zowalla closed TOMEE-4205. ---------------------------------- Fix Version/s: (was: 10.0.0-M1) (was: 8.0.15) (was: 9.1.0) Resolution: Fixed > Jose4j 0.9.3 > ------------ > > Key: TOMEE-4205 > URL: https://issues.apache.org/jira/browse/TOMEE-4205 > Project: TomEE > Issue Type: Dependency upgrade > Components: TomEE Core Server > Affects Versions: 8.0.14, 9.0.0 > Reporter: RAJU THANNEERU > Assignee: Richard Zowalla > Priority: Major > Fix For: 10.0.0 > > Time Spent: 40m > Remaining Estimate: 0h > > New vulnerability identified on jose4j jar > See [https://github.com/advisories/GHSA-jgvc-jfgh-rjvv] for more details. -- This message was sent by Atlassian Jira (v8.20.10#820010)