[jira] [Commented] (KARAF-7947) Karaf: Upgrade org.apache.felix.cm.json due to vulnerability

ASF subversion and git services (Jira) Sun, 27 Jul 2025 22:29:06 -0700


    [ 
https://issues.apache.org/jira/browse/KARAF-7947?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18010254#comment-18010254
 ]


ASF subversion and git services commented on KARAF-7947:
--------------------------------------------------------

Commit a9175c00e72cfe5b38901ca1fcdc1976cadf7ca6 in karaf's branch 
refs/heads/karaf-4.4.x from JB Onofré
[ https://gitbox.apache.org/repos/asf?p=karaf.git;h=a9175c00e7 ]

KARAF-7947: Upgrade to Felix CM Json 1.0.8 (#1975)

(cherry picked from commit 2ef11ff6a2c95aae1c7770ddb54e9d3309932a02)


> Karaf: Upgrade org.apache.felix.cm.json due to vulnerability
> ------------------------------------------------------------
>
>                 Key: KARAF-7947
>                 URL: https://issues.apache.org/jira/browse/KARAF-7947
>             Project: Karaf
>          Issue Type: Dependency upgrade
>          Components: karaf
>            Reporter: Martin Lichtin
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>
> Karaf: Upgrade org.apache.felix.cm.json due to vulnerability
> Version org.apache.felix.cm.json-1.0.6.jar is marked with a vulnerability 
> The vulnerability looks like a red-herring, but still users complain, and it 
> will be easier if we could use a slightly newer version.
> [Maven Repository: org.apache.felix » 
> org.apache.felix.cm.json|https://mvnrepository.com/artifact/org.apache.felix/org.apache.felix.cm.json]



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (KARAF-7947) Karaf: Upgrade org.apache.felix.cm.json due to vulnerability

Reply via email to