[jira] [Updated] (THRIFT-5427) Thrift v0.14.1 contains dependecy to vulnerable `ws` module

Jens Geyer (Jira) Sat, 12 Jun 2021 09:51:05 -0700


     [ 
https://issues.apache.org/jira/browse/THRIFT-5427?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jens Geyer updated THRIFT-5427:
-------------------------------
    Summary: Thrift v0.14.1 contains dependecy to vulnerable `ws` module  (was: 
Thrift v0.14.1 contains vulnerability of `ws` module)

> Thrift v0.14.1 contains dependecy to vulnerable `ws` module
> -----------------------------------------------------------
>
>                 Key: THRIFT-5427
>                 URL: https://issues.apache.org/jira/browse/THRIFT-5427
>             Project: Thrift
>          Issue Type: Bug
>    Affects Versions: 0.14.1
>            Reporter: Hitendra Singh Hada
>            Priority: Major
>
> Currently thrift v0.14.1 contains dependecy of `ws` module v5.2.2 which is 
> vulnerable. To fix the vulnerability you need to update `ws` module with 
> version 7.4.6. Please have a look and advise ETA.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (THRIFT-5427) Thrift v0.14.1 contains dependecy to vulnerable `ws` module

Reply via email to