[jbosstools-dev] Security for in TP 4.41.2.CR1-SNAPSHOT: JGit
Mickael Istria
mistria at redhat.com
Tue Jan 13 04:41:30 EST 2015
Hi,
Some of you may be aware that a vulnerability was found in most Git
clients (including JGit):
https://bugs.eclipse.org/bugs/show_bug.cgi?id=456947
In order to not propagate this vulnerability, we've updated the target
platform 4.41.2.CR1-SNAPSHOT to ship a fixed version of EGit/JGit.
Parent pom 4.2.2-SNAPSHOT will be updated to consume the modified
4.41.2.CR1-SNAPSHOT target-platform.
Jobs for jbosstools-4.2.x branch will be updated to consume and ship the
modified 4.41.2.CR1-SNAPSHOT target-platform.
Then, when we have made the necessary test to validate that our change
has the expected effect on JBoss Tools and JBoss Developer Studio, we'll
release this 4.41.2.CR1-SNAPSHOT target-platform as a 4.41.2.Final,
re-update parent pom and jobs, and we'll be able to proceed with staging
of JBT 4.2.2/JBDS 8.0.2.
Cheers,
--
Mickael Istria
Eclipse developer at JBoss, by Red Hat <http://www.jboss.org/tools>
My blog <http://mickaelistria.wordpress.com> - My Tweets
<http://twitter.com/mickaelistria>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jbosstools-dev/attachments/20150113/db3657d5/attachment.html
More information about the jbosstools-dev
mailing list