[ https://issues.apache.org/jira/browse/KARAF-7713?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17744880#comment-17744880 ]
ASF GitHub Bot commented on KARAF-7713: --------------------------------------- coheigea opened a new pull request, #1729: URL: https://github.com/apache/karaf/pull/1729 sshd-sftp-2.9.2.jar (pkg:maven/org.apache.sshd/sshd-sftp@2.9.2, cpe:2.3:a:apache:sshd:2.9.2:*:*:*:*:*:*:*) : CVE-2023-35887 > Update SSHD to 2.10.0 to fix CVE-2023-35887 > ------------------------------------------- > > Key: KARAF-7713 > URL: https://issues.apache.org/jira/browse/KARAF-7713 > Project: Karaf > Issue Type: Bug > Affects Versions: 4.4.3 > Reporter: Colm O hEigeartaigh > Priority: Major > Fix For: 4.4.4 > > > Update SSHD to 2.10.0 to fix CVE-2023-35887 > https://nvd.nist.gov/vuln/detail/CVE-2023-35887 -- This message was sent by Atlassian Jira (v8.20.10#820010)