You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Jeyassri Balachandran (Jira)" <ji...@apache.org> on 2023/05/12 09:40:00 UTC
[jira] [Comment Edited] (NIFI-11543) Upgrade Spring Vault version from 2.3.2 to 2.3.3
[ https://issues.apache.org/jira/browse/NIFI-11543?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17722095#comment-17722095 ]
Jeyassri Balachandran edited comment on NIFI-11543 at 5/12/23 9:39 AM:
-----------------------------------------------------------------------
<artifactId>nifi-hashicorp-vault</artifactId>
<properties>
<spring.vault.version>2.3.3</spring.vault.version>
</properties>
This is the upgrade that can be done for NiFi-1.19.x
was (Author: shreeju):
<artifactId>nifi-hashicorp-vault</artifactId>
<properties>
<spring.vault.version>2.3.3</spring.vault.version>
</properties>
This is the change that can be done for 1.19.x
> Upgrade Spring Vault version from 2.3.2 to 2.3.3
> ------------------------------------------------
>
> Key: NIFI-11543
> URL: https://issues.apache.org/jira/browse/NIFI-11543
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Extensions
> Affects Versions: 1.19.0, 1.19.1
> Reporter: Jeyassri Balachandran
> Priority: Minor
> Labels: dependency-upgrade
>
> In nifi-commons/nifi-hashicorp-vault/pom.xml, under nifi-hashicorp-vault,
> Spring.vault.version should be upgraded from 2.3.2 to 2.3.3.
> This will help fix Medium security vulnerability CVE-2023-20863.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)