[jira] [Updated] (ZOOKEEPER-4662) OWASP is failing on the zookeeper-it module due false positives about JUnit CVEs

Enrico Olivelli (Jira) Mon, 23 Jan 2023 05:04:28 -0800


     [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-4662?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Enrico Olivelli updated ZOOKEEPER-4662:
---------------------------------------
    Fix Version/s:     (was: 3.8.1)
                       (was: 3.7.2)

> OWASP is failing on the zookeeper-it module due false positives about JUnit 
> CVEs
> --------------------------------------------------------------------------------
>
>                 Key: ZOOKEEPER-4662
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4662
>             Project: ZooKeeper
>          Issue Type: Test
>          Components: tests
>    Affects Versions: 3.8.0
>            Reporter: Enrico Olivelli
>            Assignee: Enrico Olivelli
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 3.9.0
>
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
>  
> {code:java}
> [ERROR] One or more dependencies were identified with vulnerabilities that 
> have a CVSS score greater than or equal to '0.0': 
> [ERROR] 
> [ERROR] junit-4.13.jar: CVE-2020-15250(5.5)
> [ERROR] junit-platform-engine-1.6.2.jar: CVE-2022-31514(9.3)
> [ERROR] 
> [ERROR] See the dependency-check report for more details.
> {code}
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (ZOOKEEPER-4662) OWASP is failing on the zookeeper-it module due false positives about JUnit CVEs

Reply via email to