I strongly encourage you to report potential security vulnerabilities to secur...@apache.org mailing lists first, before disclosing them in a public forum. Please see the page of the ASF Security Team[1] for further information and contact information.
[1] https://www.apache.org/security/ On Fri, 25 Oct 2024 at 11:27, Anzile, Christophe <christophe.anz...@hpe.com.invalid> wrote: > Hi > Our vulnerability scanning tool is reporting following CVEs for artemis > 2.37.0 > > * CVE-2008-5518<https://github.com/advisories/GHSA-xm92-rf24-h74w> > * CVE-2009-0038<https://github.com/advisories/GHSA-c372-x57p-6x7v> > * CVE-2009-0039<https://github.com/advisories/GHSA-678x-xfp4-r92r> > * CVE-2024-6763<https://github.com/advisories/GHSA-qh8g-58pp-2wxh> > * CVE-2023-6378<https://github.com/advisories/GHSA-vmq6-5m68-f53m> > * CVE-2024-8184<https://github.com/advisories/GHSA-g8m5-722r-8whq> > * CVE-2024-47554<https://github.com/advisories/GHSA-78wr-2p64-hpwj> > Are they really there ? > If yes, any plan to fix them? > Thanx. >
