Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Neutral
Fix Version/s: POMs 42
Affects Version/s: POMs 41
Component/s: Poms
Labels:
- maintenance
- security

Template:
Acceptance criteria:

Empty

show more show less
Task DoR:

Empty

show more show less
Release notes required:

Yes
Sprint:
Maintenance 51, Maintenance 52
Story Points:
1

One or more dependencies were identified with known vulnerabilities in Magnolia DX Core webapp:

daisydiff-1.2-magnolia.jar (pkg:maven/org.outerj.daisy/daisydiff@1.2-magnolia, cpe:2.3:a:magnolia-cms:magnolia_cms:1.2:::::::*) : CVE-2021-25893, CVE-2021-25894

Vulnerability refers to an older Magnolia version, completely unrelated to daisydiff.

Acceptance criteria

clones

BUILD-448 Dismiss CVE reports related to xz library

Closed

Assignee:: Federico Grilli

Reporter:: Federico Grilli

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 07/Apr/21 9:00 AM

Updated:: 08/Apr/21 9:25 AM

Resolved:: 08/Apr/21 9:24 AM

Task DoR

Details

Description

Checklists

Attachments

Issue Links

Activity

People

Dates

Checklists