[
https://issues.apache.org/jira/browse/THRIFT-5427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17355269#comment-17355269
]
Hitendra Singh Hada commented on THRIFT-5427:
---------------------------------------------
Hi @here Could someone please take a look. Our application is using thrift
dependency and we require to resolve it to follow some compliance agreements.
Thanks.
> Thrift v0.14.1 contains vulnerability of `ws` module
> ----------------------------------------------------
>
> Key: THRIFT-5427
> URL: https://issues.apache.org/jira/browse/THRIFT-5427
> Project: Thrift
> Issue Type: Bug
> Environment: Production
> Reporter: Hitendra Singh Hada
> Priority: Major
>
> Currently thrift v0.14.1 contains dependecy of `ws` module v5.2.2 which is
> vulnerable. To fix the vulnerability you need to update `ws` module with
> version 7.4.6. Please have a look and advise ETA.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
