[
https://issues.apache.org/jira/browse/KARAF-7625?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17649409#comment-17649409
]
ASF subversion and git services commented on KARAF-7625:
--------------------------------------------------------
Commit 3e3ccd2a2705acef95aacd2c6788cd6b33ea844c in karaf's branch
refs/heads/main from Jean-Baptiste Onofré
[ https://gitbox.apache.org/repos/asf?p=karaf.git;h=3e3ccd2a27 ]
Merge pull request #1699 from jbonofre/KARAF-7625
[KARAF-7625] Upgrade to CXF 3.5.5
> Upgrade to CXF 3.5.5
> --------------------
>
> Key: KARAF-7625
> URL: https://issues.apache.org/jira/browse/KARAF-7625
> Project: Karaf
> Issue Type: Dependency upgrade
> Components: karaf
> Reporter: Andre Schlegel-Tylla
> Assignee: Jean-Baptiste Onofré
> Priority: Major
>
> In CXF are two new security vulnerabilities reportet
> ([https://nvd.nist.gov/vuln/detail/CVE-2022-46363,]
> [https://nvd.nist.gov/vuln/detail/CVE-2022-46364)|https://nvd.nist.gov/vuln/detail/CVE-2022-46364]
> So CXF should be updated to Version 3.5.5.
> FYI [~jbonofre]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
