[jira] [Work logged] (KNOX-3061) Upgrade Bouncy Castle to 1.78

ASF GitHub Bot (Jira) Wed, 20 Nov 2024 05:51:07 -0800


     [ 
https://issues.apache.org/jira/browse/KNOX-3061?focusedWorklogId=944589&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-944589
 ]


ASF GitHub Bot logged work on KNOX-3061:
----------------------------------------

                Author: ASF GitHub Bot
            Created on: 20/Nov/24 13:49
            Start Date: 20/Nov/24 13:49
    Worklog Time Spent: 10m 
      Work Description: pzampino commented on code in PR #964:
URL: https://github.com/apache/knox/pull/964#discussion_r1850350329


##########
pom.xml:
##########
@@ -2344,6 +2368,10 @@
                         <groupId>dom4j</groupId>
                         <artifactId>dom4j</artifactId>
                     </exclusion>
+                    <exclusion>

Review Comment:
   The pac4j version is compatible with this later version of bouncycastle?





Issue Time Tracking
-------------------

    Worklog Id:     (was: 944589)
    Time Spent: 20m  (was: 10m)

> Upgrade Bouncy Castle to 1.78
> -----------------------------
>
>                 Key: KNOX-3061
>                 URL: https://issues.apache.org/jira/browse/KNOX-3061
>             Project: Apache Knox
>          Issue Type: Task
>          Components: Build
>    Affects Versions: 2.1.0
>            Reporter: Tamás Hanicz
>            Priority: Minor
>             Fix For: 2.1.0
>
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> Upgrade Bouncy Castle to 1.78 due to CVE-2023-33202, CVE-2023-33201, 
> CVE-2024-29857, CVE-2024-30171, CVE-2024-30172 and CVE-2024-34447



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Work logged] (KNOX-3061) Upgrade Bouncy Castle to 1.78

Reply via email to