Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-5423

Upgrade remoting from 5.0.21.Final to 5.0.23.Final (fixes CVE-2020-35510)

    XMLWordPrintable

Details

    • Component Upgrade
    • Resolution: Done
    • Major
    • 16.0.0.Beta4, 16.0.0.Final
    • None
    • None
    • None

    Description

      Upgrade JBoss Remoting to 5.0.23.Final
      For more information on the CVE-2020-35510 (REM3-379): https://access.redhat.com/security/cve/cve-2020-35510

      Attachments

        Issue Links

          incorporates

          Bug - A problem that impairs or prevents the functions of the product. REM3-379 CVE-2020-35510 Threads hold up forever in the EJB server by suppressing the ack from an EJB client

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Bug - A problem that impairs or prevents the functions of the product. REM3-380 Add OutboundMessage info to messages logged by this class

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Task - Represents a small unit of work that is not end-user facing. REM3-378 Updated all classes with a dependency on deprecated Elytron modules to no longer rely on deprecated classes

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Task - Represents a small unit of work that is not end-user facing. REM3-381 Revert REM3-378 in Remoting 5.0.x

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          is blocked by

          Task - Represents a small unit of work that is not end-user facing. WFCORE-5424 Remoting requires wildfly security manager

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is cloned by

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-21961 [GSS](7.4.z) Upgrade remoting from 5.0.20.SP1-redhat-00001 to 5.0.23.SP1-redhat-00001

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is related to

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-21582 (7.3.z) Upgrade remoting from 5.0.20.SP1-redhat-00001 to 5.0.23.Final-redhat-00001

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              flaviarnn Flavia Rainone
              flaviarnn Flavia Rainone
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: