Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-17359

Update protobuf to 3.19.6 (resolves CVE-2022-3171)

    XMLWordPrintable

Details

    • Component Upgrade
    • Resolution: Done
    • Major
    • 27.0.1.Final, 28.0.0.Beta1
    • 27.0.0.Final
    • None
    • None

    Description

      A CVE was opened on the protobuf library used by OpenTelemetry. Update to 3.19.6 to mitigate it.

      https://nvd.nist.gov/vuln/detail/CVE-2022-3171

      Attachments

        Activity

          Public project attachment banner

            context keys: [headless, issue, helper, isAsynchronousRequest, project, action, user]
            current Project key: WFLY

            People

              bstansbe@redhat.com Brian Stansberry
              jaslee@redhat.com Jason Lee
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: