You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@camel.apache.org by "Vladyslav (Jira)" <ji...@apache.org> on 2023/08/23 18:28:00 UTC

[jira] [Comment Edited] (CAMEL-19672) CVE 2023-34455 - Vulnerability with Camel-Kafka

    [ https://issues.apache.org/jira/browse/CAMEL-19672?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17758183#comment-17758183 ] 

Vladyslav edited comment on CAMEL-19672 at 8/23/23 6:27 PM:
------------------------------------------------------------

[~acosentino] No but I'm saying Camel Kafka Starter
Will you be able to release Camel Kafka Starter 3.21 with Kafka Client 3.5.1?

Why it depends from Spring Boot Dependencies?


was (Author: JIRAUSER301641):
[~acosentino] No but I'm saying Camel Kafka Starter
Will you be able to release Camel Kafka Starter 3.21 with Kafka Client 3.5.1?

> CVE 2023-34455 - Vulnerability with Camel-Kafka
> -----------------------------------------------
>
>                 Key: CAMEL-19672
>                 URL: https://issues.apache.org/jira/browse/CAMEL-19672
>             Project: Camel
>          Issue Type: Dependency upgrade
>            Reporter: Sasikumar Muthukrishnan Sampath
>            Priority: Minor
>
> This vulnerability is from apache kafka and they have fixed this issue and released new versions.
> [KAFKA-15096] CVE 2023-34455 - Vulnerability identified with Apache kafka - ASF JIRA
>  
> Please upgrade camel kafka with the fix from apache kafka and release newer versions.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)