[jira] [Created] (ZOOKEEPER-4827) Bump bouncycastl version from 1.75 to 1.78

Tue, 16 Apr 2024 04:54:06 -0700 

ZhangJian He created ZOOKEEPER-4827:
---------------------------------------

             Summary: Bump bouncycastl version from 1.75 to 1.78
                 Key: ZOOKEEPER-4827
                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4827
             Project: ZooKeeper
          Issue Type: Task
            Reporter: ZhangJian He


Upgrade Bouncy Castle to 1.78 to address CVEs
https://bouncycastle.org/releasenotes.html#r1rv78

- https://www.cve.org/CVERecord?id=CVE-2024-29857 (reserved)
  - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613079
- https://www.cve.org/CVERecord?id=CVE-2024-30171 (reserved)
  - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613076
- https://www.cve.org/CVERecord?id=CVE-2024-30172 (reserved)
  - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6612984



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to