Uploaded image for project: 'IMPALA'
  1. IMPALA
  2. IMPALA-11149

Upgrade xmlsec to address CVE

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • Impala 4.1.0
    • Impala 4.1.0
    • Infrastructure
    • None
    • ghx-label-7

    Description

      Scanning Impala docker images found a CVE listed for xmlsec-2.2.1.jar (CVE-2021-40690). We need to upgrade this to 2.2.3 or higher to address the CVE. The latest xmlsec is 2.3.0.

      Attachments

        Activity

          People

            joemcdonnell Joe McDonnell
            joemcdonnell Joe McDonnell
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: