On 14.05.24 10:31 , Teki Harsha sesha sai wrote:
We are working on the project using sshd-core dependence version ( 2.12.1
), in this version we came across vulnerabilities. So when can we expect
the lastest version without vulnerabilities.
We need your support advance thanks
This is an open-source project run by volunteers; there is no official
support.
Unless you can be more specific, you cannot expect anything. What does
"we came across vulnerabilities" mean?
How many?
How did you "come across" them?
If some scanner reported something, which scanner was it, and what did
it report? (Note: if the report was about some dependency, you can
usually resolve it by including a newer version of that dependency in
your application.)
If you think you found a problem in the source code, see
https://www.apache.org/security/ : please report your
findings via e-mail to secur...@apache.org.
Regards,
Thomas
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org
For additional commands, e-mail: dev-h...@mina.apache.org
