JPPF Issue Tracker
star_faded.png
Please log in to bookmark issues
task_small.png
CLOSED  Task JPPF-598  -  Fix vulnerabilities found in security scans
Posted Jul 31, 2019 - updated Aug 11, 2019
icon_info.png This issue has been closed with status "Closed" and resolution "RESOLVED".
Issue details
  • Type of issue
    Task
  • Status
     
    Closed
  • Assigned to
     lolo4j
  • Progress
       
  • Type of bug
    Not triaged
  • Likelihood
    Not triaged
  • Effect
    Not triaged
  • Posted by
     lolo4j
  • Owned by
    Not owned by anyone
  • Estimated time
    Not estimated
  • Category
    Security
  • Resolution
    RESOLVED
  • Priority
    Normal
  • Targetted for
    icon_milestones.png JPF 6.2
Issue description
The attached dependency-check report lists a number of vulnerabilities in the PPF dependencies. So far, all vulnerabilities are found in the web admin console and tied to wicket. We will need to upgrade the version of Apache Wicket to 8.x (currently 7.4.0), which was overdue anyway

#1
Comment posted by
 lolo4j
Jul 31, 06:47
A file was uploaded. dependency-check-report.zipicon_open_new.png
#3
Comment posted by
 lolo4j
Jul 31, 22:43
A file was uploaded. Vulnerabilities after upgrade of Wicket to 8.5.0icon_open_new.png