[jira] [Commented] (CURATOR-484) CVE-2014-0085, CVE-2018-8012 known security vulnerabilities

Cameron McKenzie (JIRA) Tue, 13 Nov 2018 13:11:00 -0800


    [ 
https://issues.apache.org/jira/browse/CURATOR-484?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16685744#comment-16685744
 ]


Cameron McKenzie commented on CURATOR-484:
------------------------------------------

Maybe I'm missing something, but looking at this security issue, it would 
appear to be a server side only problem?

> CVE-2014-0085, CVE-2018-8012 known security vulnerabilities
> -----------------------------------------------------------
>
>                 Key: CURATOR-484
>                 URL: https://issues.apache.org/jira/browse/CURATOR-484
>             Project: Apache Curator
>          Issue Type: Improvement
>            Reporter: Mujassim Sheikh
>            Assignee: Jordan Zimmerman
>            Priority: Major
>
> 1. Due to the dependency on apache zookeeper 3.5.3-beta, curator is 
> vulnerable to CVE-2018-8012
>  We should change it to use 3.5.4-beta as soon as possible.
>  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (CURATOR-484) CVE-2014-0085, CVE-2018-8012 known security vulnerabilities

Reply via email to