[ 
https://issues.apache.org/jira/browse/ATLAS-4938?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17930557#comment-17930557
 ] 

didada commented on ATLAS-4938:
-------------------------------

Now I meet CVE-2024-46910.

[https://lists.apache.org/thread/sqzp34l4cdk21zoq5g31qlsvr7jvb1fy]

I found a commit here may have some relation to the CVE. In my company, I can 
not upgrade Atlas to 2.4.0 directly. Whether I can merge this patch to sovle 
the CVE-2024-46910?

> Atlas: Upgrade DOMPurify to latest version.
> -------------------------------------------
>
>                 Key: ATLAS-4938
>                 URL: https://issues.apache.org/jira/browse/ATLAS-4938
>             Project: Atlas
>          Issue Type: Task
>          Components:  atlas-core
>            Reporter: Brijesh Bhalala
>            Assignee: Farhan Khan
>            Priority: Major
>         Attachments: 
> 0001-ATLAS-4938-UI-Upgrade-DOMPurify-to-latest-version.patch
>
>
> Update the DOMPurify library to latest version.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to