Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update jdom2 2.0.6 -> 2.0.6.1 #1316

Merged
merged 1 commit into from
Mar 14, 2024
Merged

Update jdom2 2.0.6 -> 2.0.6.1 #1316

merged 1 commit into from
Mar 14, 2024

Conversation

gwalbran
Copy link
Contributor

jdom 2.0.6 contains vulnerability
https://avd.aquasec.com/nvd/2021/cve-2021-33813/

version 2.0.6.1 has been released to address this.

Description of Changes

Erase this and add a general description of changes, heads-up on any tricky parts, etc., here.

PR Checklist

  • Link to any issues that the PR addresses
  • Add labels
  • Open as a draft PR
    until ready for review
  • Make sure GitHub tests pass
  • Mark PR as "Ready for Review"

@CLAassistant
Copy link

CLAassistant commented Mar 12, 2024
edited
Loading

CLA assistant check
All committers have signed the CLA.

@rschmunk
Copy link
Contributor

This has been around a while. It was (somewhat) addressed in #801. I don' t recall if there was any discussion about updating the actual jdom jar, and if so, then why or why not. Maybe @lesserwhirls remembers.

@gwalbran
Copy link
Contributor Author

The #801 changes were about four months ahead of the jdom release. So I imagine it was mitigated and forgotten about.

@gwalbran @haileyajohnson
Update jdom2 2.0.6 -> 2.0.6.1
9194d8c 
jdom 2.0.6 contains vulnerability
https://avd.aquasec.com/nvd/2021/cve-2021-33813/

version 2.0.6.1 has been released to address this.
@haileyajohnson haileyajohnson merged commit 50407ae into Unidata:maint-5.x Mar 14, 2024
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@haileyajohnson haileyajohnson haileyajohnson approved these changes

@oxelson oxelson Awaiting requested review from oxelson

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@gwalbran @CLAassistant @rschmunk @haileyajohnson