You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ignite.apache.org by "Andrey Gura (JIRA)" <ji...@apache.org> on 2018/05/11 16:01:00 UTC
[jira] [Resolved] (IGNITE-8472) Apache ignite for .NET has security
vulnerabilities
[ https://issues.apache.org/jira/browse/IGNITE-8472?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Andrey Gura resolved IGNITE-8472.
---------------------------------
Resolution: Duplicate
Fix Version/s: (was: 2.6)
> Apache ignite for .NET has security vulnerabilities
> ---------------------------------------------------
>
> Key: IGNITE-8472
> URL: https://issues.apache.org/jira/browse/IGNITE-8472
> Project: Ignite
> Issue Type: Bug
> Components: security
> Affects Versions: 2.4
> Reporter: Harendra Rai
> Priority: Critical
>
> There are two vulnerabilities in the latest 2.3.0 version.
> # commons-beanutils-1.8.3.jar. Here is the vulnerability id CVE-2014-0114 : [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114]
> *Resolution to this issue is*: Upgrade Commons BeanUtils to the latest version >= commons-beanutils-1.9.2
> # commons-codec-1.6.jar: Here is the vulnerability detail https://issues.apache.org/jira/browse/CODEC-96
> *Resolution to this issue is:* To upgrade to the latest available Version 1.11
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)