Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-4225

Remove commons-net from TomEE distribution

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 9.0.0, 9.1.0
    • 10.0.0-M1, 9.1.1
    • TomEE Core Server
    • None

    Description

      Vulnerability on Apache commons net version 3.8.0 which is used in TomEE 9.0.0 and 9.1.0

      https://nvd.nist.gov/vuln/detail/CVE-2021-37533

      https://mvnrepository.com/artifact/commons-net/commons-net/3.8.0

      Apache Commons Net 3.9.0 does not have this vulnerability.

      https://mvnrepository.com/artifact/commons-net/commons-net/3.9.0

       

      Attachments

        1. image-2023-06-16-17-15-55-913.png
          307 kB
          RAJU THANNEERU

        Activity

          People

            rzo1 Richard Zowalla
            rthannee RAJU THANNEERU
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: