Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-17359

Update protobuf to 3.19.6 (resolves CVE-2022-3171)

    XMLWordPrintable

Details

    • Component Upgrade
    • Resolution: Done
    • Major
    • 27.0.1.Final, 28.0.0.Beta1
    • 27.0.0.Final
    • None
    • None

    Description

      A CVE was opened on the protobuf library used by OpenTelemetry. Update to 3.19.6 to mitigate it.

      https://nvd.nist.gov/vuln/detail/CVE-2022-3171

      Attachments

        Activity

          People

            bstansbe@redhat.com Brian Stansberry
            jaslee@redhat.com Jason Lee
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: