[jira] [Updated] (IGNITE-8472) Apache ignite for .NET has security vulnerabilities

Harendra Rai (JIRA) Fri, 11 May 2018 06:30:48 -0700

     [ 
https://issues.apache.org/jira/browse/IGNITE-8472?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Harendra Rai updated IGNITE-8472:
---------------------------------
    Description: 
There are two vulnerabilities in the latest 2.3.0 version.
 # commons-beanutils-1.8.3.jar.  Here is the vulnerability id CVE-2014-0114 :  
[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114]

*Resolution to this issue is*: Upgrade Commons BeanUtils to the latest version 
>= commons-beanutils-1.9.2
 # commons-codec-1.6.jar: Here is the vulnerability detail 
https://issues.apache.org/jira/browse/CODEC-96

*Resolution to this issue is:* To upgrade to the latest available Version 1.11

  was:
There are two vulnerabilities in the latest 2.3.0 version.
 # commons-beanutils-1.8.3.jar.  Here is the vulnerability id CVE-2014-0114 :  
[https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114]

*Resolution to this issue is*: All Commons BeanUtils users should upgrade to 
the latest version >= commons-beanutils-1.9.2
 # commons-codec-1.6.jar: Here is the vulnerability detail 
https://issues.apache.org/jira/browse/CODEC-96

*Resolution to this issue is:* To upgrade to the latest available Version 1.11


> Apache ignite for .NET has security vulnerabilities
> ---------------------------------------------------
>
>                 Key: IGNITE-8472
>                 URL: https://issues.apache.org/jira/browse/IGNITE-8472
>             Project: Ignite
>          Issue Type: Bug
>          Components: security
>    Affects Versions: 2.4
>            Reporter: Harendra Rai
>            Priority: Critical
>             Fix For: 2.5
>
>
> There are two vulnerabilities in the latest 2.3.0 version.
>  # commons-beanutils-1.8.3.jar.  Here is the vulnerability id CVE-2014-0114 : 
>  [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114]
> *Resolution to this issue is*: Upgrade Commons BeanUtils to the latest 
> version >= commons-beanutils-1.9.2
>  # commons-codec-1.6.jar: Here is the vulnerability detail 
> https://issues.apache.org/jira/browse/CODEC-96
> *Resolution to this issue is:* To upgrade to the latest available Version 1.11



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Updated] (IGNITE-8472) Apache ignite for .NET has security vulnerabilities

Reply via email to