JPPF Issue Tracker ~ [CLOSED] JPPF-598 - Fix vulnerabilities found in security scans

JPPF Issue Tracker

CLOSED Task JPPF-598 - Fix vulnerabilities found in security scans

Posted Jul 31, 2019 - updated Aug 11, 2019

This issue has been closed with status "Closed" and resolution "RESOLVED".

Issue details

Type of issue

Task Unknown issue type
Status

Closed

Status not determined
Assigned to

lolo4j

Laurent Cohen
Offline

This user was last seen online at Feb 06, 2021 - 05:08

Show user details

Close this menu

Not assigned to anyone
Progress
Type of bug

Not triaged
Likelihood

Not triaged
Effect

Not triaged
Posted by

lolo4j

Laurent Cohen
Offline

This user was last seen online at Feb 06, 2021 - 05:08

Show user details

Close this menu
Owned by

Not owned by anyone
Estimated time

No time Not estimated
Time spent

No time No time spent
Category

Security Not determined
Resolution

RESOLVED Not determined
Priority

Normal Not determined
Reproducability

Not determined
Severity

Not determined
Targetted for

JPPF 6.2 Not determined

Issue description

The attached dependency-check report lists a number of vulnerabilities in the PPF dependencies. So far, all vulnerabilities are found in the web admin console and tied to wicket. We will need to upgrade the version of Apache Wicket to 8.x (currently 7.4.0), which was overdue anyway

Show system-generated comments

Comment posted by

lolo4j

Jul 31, 06:47

A file was uploaded. dependency-check-report.zip

Comment posted by

lolo4j

Jul 31, 22:43

A file was uploaded. Vulnerabilities after upgrade of Wicket to 8.5.0

Really delete this comment?

Really delete this comment?

Really delete this comment?

Really delete this comment?