[jira] [Updated] (NIFI-12259) Upgrade Santuario XML to 2.3.4

David Handermann (Jira) Fri, 20 Oct 2023 10:05:30 -0700


     [ 
https://issues.apache.org/jira/browse/NIFI-12259?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


David Handermann updated NIFI-12259:
------------------------------------
    Status: Patch Available  (was: Open)

> Upgrade Santuario XML to 2.3.4
> ------------------------------
>
>                 Key: NIFI-12259
>                 URL: https://issues.apache.org/jira/browse/NIFI-12259
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework
>            Reporter: David Handermann
>            Assignee: David Handermann
>            Priority: Major
>              Labels: dependency-upgrade
>             Fix For: 2.0.0, 1.24.0
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> Apache Santuario 2.3.4 includes a resolution for CVE-2023-44483, which 
> relates to logging sensitive private key information at the debug level. 
> Spring Security SAML2 has a dependency on Apache Santuario, which should be 
> upgraded.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (NIFI-12259) Upgrade Santuario XML to 2.3.4

Reply via email to