[jira] [Updated] (ZOOKEEPER-4827) Bump bouncycastl version from 1.75 to 1.78

Tue, 30 Apr 2024 01:36:07 -0700 


     [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-4827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Zili Chen updated ZOOKEEPER-4827:
---------------------------------
    Fix Version/s: 3.10.0

> Bump bouncycastl version from 1.75 to 1.78
> ------------------------------------------
>
>                 Key: ZOOKEEPER-4827
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4827
>             Project: ZooKeeper
>          Issue Type: Task
>            Reporter: ZhangJian He
>            Priority: Minor
>              Labels: pull-request-available
>             Fix For: 3.10.0
>
>          Time Spent: 50m
>  Remaining Estimate: 0h
>
> Upgrade Bouncy Castle to 1.78 to address CVEs
> https://bouncycastle.org/releasenotes.html#r1rv78
> - https://www.cve.org/CVERecord?id=CVE-2024-29857 (reserved)
>   - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613079
> - https://www.cve.org/CVERecord?id=CVE-2024-30171 (reserved)
>   - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613076
> - https://www.cve.org/CVERecord?id=CVE-2024-30172 (reserved)
>   - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6612984



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to