You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2022/03/17 15:39:00 UTC

[jira] [Work logged] (KNOX-2717) upgrade shiro due to security issue

     [ https://issues.apache.org/jira/browse/KNOX-2717?focusedWorklogId=743188&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-743188 ]

ASF GitHub Bot logged work on KNOX-2717:
----------------------------------------

                Author: ASF GitHub Bot
            Created on: 17/Mar/22 15:38
            Start Date: 17/Mar/22 15:38
    Worklog Time Spent: 10m 
      Work Description: pjfanning opened a new pull request #547:
URL: https://github.com/apache/knox/pull/547


   (It is very **important** that you created an Apache Knox JIRA for this change and that the PR title/commit message includes the Apache Knox JIRA ID!)
   
   ## What changes were proposed in this pull request?
   
   https://issues.apache.org/jira/browse/KNOX-2717
   
   security issue in shiro
   
   ## How was this patch tested?
   
   (Please explain how this patch was tested. For instance: running automated unit/integration tests, manual tests. Please write down your test steps as detailed as possible)
   (If this patch involves UI changes, please attach a screen-shot; otherwise, remove this)
   
   Please review [Knox Contributing Process](https://cwiki.apache.org/confluence/display/KNOX/Contribution+Process#ContributionProcess-GithubWorkflow) before opening a pull request.
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@knox.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


Issue Time Tracking
-------------------

            Worklog Id:     (was: 743188)
    Remaining Estimate: 0h
            Time Spent: 10m

> upgrade shiro due to security issue
> -----------------------------------
>
>                 Key: KNOX-2717
>                 URL: https://issues.apache.org/jira/browse/KNOX-2717
>             Project: Apache Knox
>          Issue Type: Bug
>            Reporter: PJ Fanning
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> https://github.com/apache/knox/blob/master/pom.xml#L256
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41303



--
This message was sent by Atlassian Jira
(v8.20.1#820001)