[jira] [Commented] (CASSANDRA-18497) snakeyaml vulnerability: CVE-2023-2251

Brandon Williams (Jira) Thu, 04 May 2023 07:18:25 -0700


    [ 
https://issues.apache.org/jira/browse/CASSANDRA-18497?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17719351#comment-17719351
 ]


Brandon Williams commented on CASSANDRA-18497:
----------------------------------------------

||Branch||CI||
|[3.0|https://github.com/driftx/cassandra/tree/CASSANDRA-18497-3.0]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/994/workflows/76de842e-e8d7-4553-9de1-e514e051730d]|
|[3.11|https://github.com/driftx/cassandra/tree/CASSANDRA-18497-3.11]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/996/workflows/f34aef4c-a924-4d27-becb-c1bccd21d97e]|
|[4.0|https://github.com/driftx/cassandra/tree/CASSANDRA-18497-4.0]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/997/workflows/b1c380ae-32e6-4f19-b417-1f715cb9578b],
 
[j11|https://app.circleci.com/pipelines/github/driftx/cassandra/997/workflows/37a33da1-6b78-4de4-b2b1-7ae2fdae2048]|
|[4.1|https://github.com/driftx/cassandra/tree/CASSANDRA-18497-4.1]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/995/workflows/49dfa2df-43d3-45b6-9004-d8e7f627dbe0],
 
[j11|https://app.circleci.com/pipelines/github/driftx/cassandra/995/workflows/1c516cd6-7002-4d61-8436-755fa96a9947]|
|[trunk|https://github.com/driftx/cassandra/tree/CASSANDRA-18497-trunk]|[j8|https://app.circleci.com/pipelines/github/driftx/cassandra/998/workflows/35f5da30-4789-4715-81e1-0adb3e4b90df],
 
[j11|https://app.circleci.com/pipelines/github/driftx/cassandra/998/workflows/ce40ec05-f1fe-4ece-b88e-49b2c40fce00]|


> snakeyaml vulnerability: CVE-2023-2251
> --------------------------------------
>
>                 Key: CASSANDRA-18497
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-18497
>             Project: Cassandra
>          Issue Type: Bug
>          Components: Local/Config
>            Reporter: Brandon Williams
>            Assignee: Brandon Williams
>            Priority: Normal
>             Fix For: 3.0.x, 3.11.x, 4.0.x, 4.1.x, 5.x
>
>
> This is failing the OWASP scan.
> https://nvd.nist.gov/vuln/detail/CVE-2023-2251



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org
For additional commands, e-mail: commits-h...@cassandra.apache.org

[jira] [Commented] (CASSANDRA-18497) snakeyaml vulnerability: CVE-2023-2251

Reply via email to