Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix security vulnerabilities in h2o3 3.46.0.2 87 #16300

Conversation

poornaSavindi
Copy link

@poornaSavindi poornaSavindi requested a review from this June 6, 2024 11:22
@this this requested a review from rsujeevan June 6, 2024 14:25
@rsujeevan
Copy link

I noticed high vulnerability from com.fasterxml.jackson.core_jackson-core
image

Screenshot 2024-06-10 at 10 51 32 AM

@rsujeevan
Copy link

✅ I just noticed that the com.fasterxml.jackson.core_jackson-core library has been updated to version 2.15.0.

I noticed that we are using version 2.16.0 in the jdbc.jar. Can we update to a newer version?

@rsujeevan
Copy link

@poornaSavindi @this, do guys think we can get this for RC3?
I believe h2o3-3.46.0.3 has been released. Is it possible to incorporate these changes on top of 3.46.0.3?

@rsujeevan
Copy link

@poornaSavindi
Can we incorporate changes from 3.46.0.3 release?

@this
Copy link
Member

this commented Jun 26, 2024

@poornaSavindi @rsujeevan PR #16169 has been merged. So hopefully there will be a new release from the v3.46.0.x (i.e. 3.46.0.4) series. And we can use that. @poornaSavindi please followup with the h2o-3 team about the new release.

@poornaSavindi poornaSavindi deleted the poorna/fix-h2o3_3.46.0.2-87-vulnerabilities branch August 9, 2024 06:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants