View Issue Details

Related ChangesetsJump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0006297SymmetricDSBugpublic2024-03-18 13:012024-04-19 15:46
Reporterelong Assigned Toelong  
Prioritynormal 
Status closedResolutionfixed 
Product Version3.15.0 
Target Version3.15.4Fixed in Version3.15.4 
Summary0006297: Upgrade mysql, postgres, vaadin, jetty libraries
DescriptionUpgrade JDBC drivers because of reported vulnerabilities:

https://www.oracle.com/security-alerts/cpuoct2023.html
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-1597

Upgrading Vaadin for possible vulnerability in nimbus-jose-jwt:

https://nvd.nist.gov/vuln/detail/CVE-2023-52428

Upgrading Jetty for weakness:

https://github.com/jetty/jetty.project/security/advisories/GHSA-rggv-cv7r-mw98
Tagssecurity

Relationships

related to 0006298 closedelong Upgrade mysql, postgres libraries 

Activities

There are no notes attached to this issue.

Related Changesets

SymmetricDS: 3.15 7d9ef6cf

2024-03-18 13:03:06

admin

Details Diff 		0006297: Upgrade mysql, postgres libraries Affected Issues
0006297
mod - symmetric-assemble/common.gradle Diff File
mod - symmetric-client/build.gradle Diff File
mod - symmetric-jdbc/build.gradle Diff File
mod - symmetric-server/build.gradle Diff File

SymmetricDS: 3.15 5b442d00

2024-03-18 18:23:54

admin

Details Diff 		0006297: Upgrade vaadin and gradle libraries Affected Issues
0006297
mod - symmetric-assemble/gradle.properties Diff File
mod - symmetric-assemble/gradle/wrapper/gradle-wrapper.properties Diff File

SymmetricDS: 3.15 28ae86e8

2024-03-18 18:52:35

admin

Details Diff 		0006297: upgrade jetty Affected Issues
0006297
mod - symmetric-assemble/common.gradle Diff File

Issue History

Date Modified Username Field Change
2024-03-18 13:01 elong New Issue
2024-03-18 13:01 elong Status new => assigned
2024-03-18 13:01 elong Assigned To => elong
2024-03-18 13:01 elong Tag Attached: security
2024-03-18 13:03 elong Status assigned => resolved
2024-03-18 13:03 elong Resolution open => fixed
2024-03-18 13:03 elong Fixed in Version => 3.15.4
2024-03-18 13:08 elong Issue cloned: 0006298
2024-03-18 13:08 elong Relationship added related to 0006298
2024-03-18 18:15 elong Description Updated View Revisions
2024-03-18 18:15 elong Summary Upgrade mysql, postgres libraries => Upgrade mysql, postgres, vaadin libraries
2024-03-18 18:52 elong Summary Upgrade mysql, postgres, vaadin libraries => Upgrade mysql, postgres, vaadin, jetty libraries
2024-03-18 18:52 elong Description Updated View Revisions
2024-03-19 16:20 admin Status resolved => closed
2024-04-19 15:46 admin Changeset attached => SymmetricDS 3.15 28ae86e8
2024-04-19 15:46 admin Changeset attached => SymmetricDS 3.15 5b442d00
2024-04-19 15:46 admin Changeset attached => SymmetricDS 3.15 7d9ef6cf