[jira] [Commented] (KARAF-7227) Upgrade geronimo artifacts to mitigate CVE-2011-5034

Jira Thu, 22 Jul 2021 23:27:04 -0700


    [ 
https://issues.apache.org/jira/browse/KARAF-7227?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17385979#comment-17385979
 ]


Jean-Baptiste Onofré commented on KARAF-7227:
---------------------------------------------

That’s part of a feature and not shipped. So not a big deal. 

> Upgrade geronimo artifacts to mitigate CVE-2011-5034
> ----------------------------------------------------
>
>                 Key: KARAF-7227
>                 URL: https://issues.apache.org/jira/browse/KARAF-7227
>             Project: Karaf
>          Issue Type: Task
>          Components: karaf
>    Affects Versions: 4.3.2
>            Reporter: Karthick
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> Security scans on Apache Karaf 4.3.2 shows we are impacted with CVE-2011-5034 
> on the packed Apache Geronimo version. Karaf must start upgrading Geronimo 
> jms* jta* components to versions unaffected by this CVE



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (KARAF-7227) Upgrade geronimo artifacts to mitigate CVE-2011-5034

Reply via email to