[jira] [Resolved] (AMQ-9148) CVE-2022-42889 - Active MQ

Jira Sun, 30 Oct 2022 09:11:04 -0700


     [ 
https://issues.apache.org/jira/browse/AMQ-9148?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jean-Baptiste Onofré resolved AMQ-9148.
---------------------------------------
    Resolution: Not A Problem

ActiveMQ doesn't use commons-text (impacted by CVE-2022-42889). So no problem 
on this front (nothing reference to {{org.apache.commons.text}} in ActiveMQ 
code).

> CVE-2022-42889 - Active MQ
> --------------------------
>
>                 Key: AMQ-9148
>                 URL: https://issues.apache.org/jira/browse/AMQ-9148
>             Project: ActiveMQ
>          Issue Type: Bug
>          Components: Distribution
>    Affects Versions: 5.16.4
>            Reporter: Imran Ali
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> Based on [https://nvd.nist.gov/vuln/detail/CVE-2022-42889] . 
> Please provide information about the impact of this vulnerability in 
> ActiveMQ, and ETA for upgrading to a non-vulnerable version. 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (AMQ-9148) CVE-2022-42889 - Active MQ

Reply via email to