Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.7.6.SP1.GA
Affects Version/s: 2.7.6.GA
Component/s: team/docs
Labels:
- keep-alive

Story Points:
1
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Doc Commitment:
?
Git Pull Request:
https://gitlab.cee.redhat.com/quarkus-documentation/quarkus/-/merge_requests/745
[QE] How to address?:
---

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

The Fixes section of the Red Hat build of Quarkus 2.7 release notes includes links to internal JIRAs.

8.1. Security fixes

8.1.1. Quarkus 2.7.6

QUARKUS-2076 CVE-2021-3520 LZ4: memory corruption due to an integer overflow bug caused by the memmove argument

QUARKUS-1969 CVE-2020-36518 Jackson-databind: denial of service caused by a large depth of nested objects

is cloned by

QUARKUS-2457 Enhance cryptic descriptions in 2.7 release notes

Closed

QUARKUS-2458 Fix 2.7 release notes to use official CVE links and descriptions verbatim not JIRAS

Closed

relates to

QUARKUS-2458 Fix 2.7 release notes to use official CVE links and descriptions verbatim not JIRAS

Closed

mentioned on

Merge request - QUARKUS-2455 - Replaced links to internal RH JIRAS

Assignee:: Michelle Purcell

Reporter:: Michelle Purcell

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2022/10/11 5:34 PM

Updated:: 2025/05/29 1:20 PM

Resolved:: 2022/10/12 1:53 PM