[
https://issues.apache.org/jira/browse/NIFI-12827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Handermann updated NIFI-12827:
------------------------------------
Labels: Testing (was: )
> Upgrade PostgresSQL JDBC to 42.7.2
> ----------------------------------
>
> Key: NIFI-12827
> URL: https://issues.apache.org/jira/browse/NIFI-12827
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Extensions, NiFi Registry
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
> Labels: Testing
> Fix For: 2.0.0, 1.26.0
>
> Time Spent: 50m
> Remaining Estimate: 0h
>
> The PostgreSQL JDBC Driver in versions prior to 42.7.2 is vulnerable to SQL
> injection using a non-default configuration property. The PostgreSQL JDBC
> Driver is not distributed in any NiFi components, it is only used as a
> dependency for integration tests, but it should be upgraded to avoid warnings
> related to CVE-2024-1597.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
