On 11/1/23 14:55, Steigerwald, Aaron wrote:
Hello,
Does anyone have an estimate for how soon Apache Artemis will be delivered with Apache
ActiveMQ artifacts that address the critical CVE-2023-46604 "Apache ActiveMQ is
vulnerable to Remote Code Execution" fix?
Fix details can be found here:
https://github.com/advisories/GHSA-crg9-44h2-xw35
Thank you,
Aaron
Use Apache ActiveMQ Artemis v2.31.2 which includes the required updated
dependency
https://activemq.apache.org/components/artemis/download/
--
Tim Bish