[
https://issues.apache.org/jira/browse/NIFI-11643?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17729838#comment-17729838
]
ASF subversion and git services commented on NIFI-11643:
--------------------------------------------------------
Commit e72ca689c2a6a2627192c9ebccecfadca682090c in nifi's branch
refs/heads/main from siddr
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=e72ca689c2 ]
NIFI-11643 Upgraded geoip2 from 2.16.1 to 4.0.1
This closes #7341
Signed-off-by: David Handermann <[email protected]>
> Upgrade geoip2 to 4.0.1
> -----------------------
>
> Key: NIFI-11643
> URL: https://issues.apache.org/jira/browse/NIFI-11643
> Project: Apache NiFi
> Issue Type: Improvement
> Reporter: Siddharth R
> Assignee: Siddharth R
> Priority: Minor
> Labels: dependency-upgrade
> Fix For: 2.latest
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
> Bump version from 2.16.1 to 4.0.1 to remediate findings:
> [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42004]
> [https://mvnrepository.com/artifact/com.maxmind.geoip2/geoip2/2.16.1#:~:text=CVE%2D2022%2D42004-,CVE%2D2022%2D42003,-CVE%2D2021%2D46877]
> [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46877]
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)