Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-15196

Request to update org.apache.sshd:sshd-* to 2.7.0 to eliminate CVE-2021-30129

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • Major
    • None
    • 24.0.1.Final
    • None
    • None

    Description

      Wildfly 24.0.1.Final still using org.apache.sshd:sshd-core:2.6.0 and org.apache.sshd:sshd-common:2.6.0, request to upgrade to 2.7.0+ to eliminate CVE-2021-30129

      Attachments

        Issue Links

          duplicates

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. WFCORE-5538 Upgrade Apache MINA SSHD to 2.7.0 (fixes CVE-2021-30129), JGit to compatible version

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              bstansbe@redhat.com Brian Stansberry
              sammyhk Sammy Chu (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: