Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CVE-2022-45688 detected in json-20220320 as a dependency from everit-json-schema #336

Closed
porcelli opened this issue Jun 12, 2023 · 0 comments · Fixed by apache/incubator-kie-kogito-runtimes#3051
Closed

Fix CVE-2022-45688 detected in json-20220320 as a dependency from everit-json-schema #336

porcelli opened this issue Jun 12, 2023 · 0 comments · Fixed by apache/incubator-kie-kogito-runtimes#3051
Assignees
@porcelli
Labels
area:cicd Related to pipelines, automation. Community GitHub Actions or internal area:dependencies Dependency upgrade/update/migration

Comments

@porcelli
Copy link
Member

porcelli commented Jun 12, 2023
edited
Loading

Fix the CVE-2022-45688 vulnerability in json-20220320.jar. The dependency is brought transitively from everit-json-schema.
@porcelli porcelli converted this from a draft issue Jun 12, 2023
@porcelli porcelli self-assigned this Jun 12, 2023
@porcelli porcelli added area:dependencies Dependency upgrade/update/migration area:cicd Related to pipelines, automation. Community GitHub Actions or internal labels Jun 12, 2023
@porcelli porcelli mentioned this issue Jun 12, 2023
Merged
@porcelli porcelli moved this from In Progress 🔧 (1 per person) to In Review 🔁 (1 per person) in IBM and KIE Community Project - Archived! Jun 12, 2023
@github-project-automation github-project-automation bot moved this from In Review 🔁 (1 per person) to Done 🎉 in IBM and KIE Community Project - Archived! Jun 14, 2023
porcelli added a commit to apache/incubator-kie-kogito-runtimes that referenced this issue Jun 14, 2023
@porcelli
Fixes CVE apache/incubator-kie-issues#336 - Updating everit-json-sche…
6982eb7 
…ma (#3051)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@porcelli porcelli

Labels
area:cicd Related to pipelines, automation. Community GitHub Actions or internal area:dependencies Dependency upgrade/update/migration
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fixes CVE kiegroup/kie-issues#336 - Updating everit-json-schema
1 participant
@porcelli