[jira] [Created] (CURATOR-684) Update dependencies: org.jboss.resteasy

Wed, 02 Aug 2023 09:40:07 -0700 

Slavik created CURATOR-684:
------------------------------

             Summary: Update dependencies: org.jboss.resteasy
                 Key: CURATOR-684
                 URL: https://issues.apache.org/jira/browse/CURATOR-684
             Project: Apache Curator
          Issue Type: Task
    Affects Versions: 5.5.0
            Reporter: Slavik
            Assignee: Enrico Olivelli


Curator has this dependency:

 
<groupId>org.jboss.resteasy</groupId>
<artifactId>resteasy-jaxrs</artifactId>
2.3.5.Final
 
That dependency bring CVEs:
 * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6346] (denial of 
service)
 * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7839] (XML external 
entity (XXE) attacks)

 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to