You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@jclouds.apache.org by "Andrew Phillips (JIRA)" <ji...@apache.org> on 2014/01/30 02:27:09 UTC

[jira] [Assigned] (JCLOUDS-437) jclouds-karaf depends on bouncycastle version affected by vulnerability CVE-2013-1624

     [ https://issues.apache.org/jira/browse/JCLOUDS-437?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrew Phillips reassigned JCLOUDS-437:
---------------------------------------

    Assignee: Andrew Phillips

> jclouds-karaf depends on bouncycastle version affected by vulnerability CVE-2013-1624
> -------------------------------------------------------------------------------------
>
>                 Key: JCLOUDS-437
>                 URL: https://issues.apache.org/jira/browse/JCLOUDS-437
>             Project: jclouds
>          Issue Type: Improvement
>    Affects Versions: 1.7.0, 1.6.3, 1.8.0
>            Reporter: Jonathan Anstey
>            Assignee: Andrew Phillips
>             Fix For: 1.8.0
>
>
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1624 is fixed in bouncy castle 1.48 and newer. Bouncycastle should be upgraded for the next jclouds-karaf release to fix this vulnerability.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)