[jbosstools-issues] [JBoss JIRA] (JBIDE-26302) Reduce CVE issues in JBT seam bundles
Nick Boldt (Jira)
issues at jboss.org
Fri Oct 5 13:31:00 EDT 2018
[ https://issues.jboss.org/browse/JBIDE-26302?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13644122#comment-13644122 ]
Nick Boldt commented on JBIDE-26302:
------------------------------------
[checkUnresolvedIssues.py] Slip to fixversion = *4.10.x*
> Reduce CVE issues in JBT seam bundles
> -------------------------------------
>
> Key: JBIDE-26302
> URL: https://issues.jboss.org/browse/JBIDE-26302
> Project: Tools (JBoss Tools)
> Issue Type: Bug
> Components: central-update
> Reporter: Nick Boldt
> Assignee: Jeff MAURY
> Priority: Major
> Fix For: 4.10.x
>
>
> Some CVE issues exist in seam bundles:
> {code}
> org.jboss.tools.cdi.seam.core_1.8.301.v20180807-1920.jar
> org.jboss.tools.maven.seam_1.9.1.v20180802-1520.jar{code} -- https://dev-platform-jenkins.rhev-ci-vms.eng.rdu2.redhat.com/view/Devstudio/view/jbosstools-releng/job/devstudio.cve.report/lastBuild/dependency-check-jenkins-pluginResult/HIGH/package.218945078/
> Verification: check if we have fewer CVEs after updating to newer version of fuse 11.1.x:
> https://dev-platform-jenkins.rhev-ci-vms.eng.rdu2.redhat.com/view/Devstudio/view/jbosstools-releng/job/devstudio.cve.report/lastBuild/dependency-check-jenkins-pluginResult/HIGH/ vs. #103
> https://dev-platform-jenkins.rhev-ci-vms.eng.rdu2.redhat.com/view/Devstudio/view/jbosstools-releng/job/devstudio.cve.report-merged/lastBuild/dependency-check-jenkins-pluginResult/HIGH/ vs. build #87
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jbosstools-issues
mailing list