Hello,
I've recently ran a dependency check on the camel-jackson 2.21.0 and
it appears that the version of jackson being used (2.8.10) has two
High/Severe vulnerabilities.
To fix this for camel-jackson we'll need to upgrade as follows:
CVE-2017-17485 - Jackson 2.9.3 or greater
CVE-2018-7489 - Ja
Hi,
I would like to use Camel inside a ServiceMix project, I wrote a sample
bundle to test functionality BUT I have a problem consuming MQtt messages.
the task is in state "Active", but messages aren't received, I can see this
error in log file: "java.util.concurrent.TimeoutException: null"
what i
Hi David
Thanks for bringing this to our attention.
The 1st issue
https://nvd.nist.gov/vuln/detail/CVE-2018-7489
Seems to only be applicable if you have spring JARs on the classpath
which some Camel users may have.
The 2nd issue
https://nvd.nist.gov/vuln/detail/CVE-2018-7489
Seems to only be