You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@maven.apache.org by "Michael Osipov (Jira)" <ji...@apache.org> on 2022/12/18 19:30:00 UTC

[jira] [Closed] (MNG-7533) jar v2.6 has medium (CVE-2021-29425) Prisma vulnerability associated with maven v3.8.6

     [ https://issues.apache.org/jira/browse/MNG-7533?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Michael Osipov closed MNG-7533.
-------------------------------
    Fix Version/s:     (was: waiting-for-feedback)
                       (was: wontfix-candidate)
       Resolution: Duplicate

> jar v2.6 has medium (CVE-2021-29425) Prisma vulnerability associated with maven v3.8.6
> --------------------------------------------------------------------------------------
>
>                 Key: MNG-7533
>                 URL: https://issues.apache.org/jira/browse/MNG-7533
>             Project: Maven
>          Issue Type: Bug
>         Environment: Production
>            Reporter: John Roddy
>            Priority: Major
>         Attachments: MicrosoftTeams-image (5).png
>
>
> jar v2.6 has medium (CVE-2021-29425) Prisma vulnerability associated with maven v3.8.6. We're using the latest for maven which is v3.8.6. Please upgrade jar to the latest to remediate the Prisma vulnerability associated with maven v3.8.6. Thank you!



--
This message was sent by Atlassian Jira
(v8.20.10#820010)