Skip to:

Skip to Jira Navigation
Skip to Side Navigation
Skip to Main Content

Update Apache CXF to 4.0.4, 3.6.3 or 3.5.8 to fix CVE-2024-28752

Description

Update Apache CXF to 4.0.4, 3.6.3 and 3.5.8 to fix CVE-2024-28752.

Acceptance / Success Criteria

None

Activity

Show:

Christian Pape September 10, 2024 at 1:32 PM

Merged.

Christian Pape September 8, 2024 at 2:04 PM

Opened another PR for 2023:
* PR: https://github.com/OpenNMS/opennms/pull/7416

Veena Kannan September 6, 2024 at 5:45 PM

Fix needs to be applied for both PB2023 & 2024.

Christian Pape September 6, 2024 at 5:54 AM

Merged.

Christian Pape September 5, 2024 at 10:54 AM

Please review:
* PR: https://github.com/OpenNMS/opennms/pull/7409

Fixed

Details

Assignee

Unassigned

Reporter

Veena Kannan

HB Grooming Date

Sep 03, 2024

HB Backlog Status

Refined Backlog

Sprint

None

Fix versions

Meridian-2023.1.20

Meridian-2024.1.4

Priority

High

Parent

NMS-16499 PoweredBy-2024 vulnerabilities reported 3Q2024

PagerDuty

Created September 4, 2024 at 2:56 AM

Updated September 10, 2024 at 1:41 PM

Resolved September 10, 2024 at 1:32 PM