[jira] [Updated] (ZOOKEEPER-4827) Bump bouncycastl version from 1.75 to 1.78
[ https://issues.apache.org/jira/browse/ZOOKEEPER-4827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Zili Chen updated ZOOKEEPER-4827: - Fix Version/s: 3.10.0 > Bump bouncycastl version from 1.75 to 1.78 > -- > > Key: ZOOKEEPER-4827 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4827 > Project: ZooKeeper > Issue Type: Task >Reporter: ZhangJian He >Priority: Minor > Labels: pull-request-available > Fix For: 3.10.0 > > Time Spent: 50m > Remaining Estimate: 0h > > Upgrade Bouncy Castle to 1.78 to address CVEs > https://bouncycastle.org/releasenotes.html#r1rv78 > - https://www.cve.org/CVERecord?id=CVE-2024-29857 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613079 > - https://www.cve.org/CVERecord?id=CVE-2024-30171 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613076 > - https://www.cve.org/CVERecord?id=CVE-2024-30172 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6612984 -- This message was sent by Atlassian Jira (v8.20.10#820010)
[jira] [Updated] (ZOOKEEPER-4827) Bump bouncycastl version from 1.75 to 1.78
[ https://issues.apache.org/jira/browse/ZOOKEEPER-4827?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] ASF GitHub Bot updated ZOOKEEPER-4827: -- Labels: pull-request-available (was: ) > Bump bouncycastl version from 1.75 to 1.78 > -- > > Key: ZOOKEEPER-4827 > URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4827 > Project: ZooKeeper > Issue Type: Task >Reporter: ZhangJian He >Priority: Minor > Labels: pull-request-available > Time Spent: 10m > Remaining Estimate: 0h > > Upgrade Bouncy Castle to 1.78 to address CVEs > https://bouncycastle.org/releasenotes.html#r1rv78 > - https://www.cve.org/CVERecord?id=CVE-2024-29857 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613079 > - https://www.cve.org/CVERecord?id=CVE-2024-30171 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6613076 > - https://www.cve.org/CVERecord?id=CVE-2024-30172 (reserved) > - https://security.snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-6612984 -- This message was sent by Atlassian Jira (v8.20.10#820010)