There is a vulnerability in hibernate 5.1.1.Final,upgrade recommended - Githubissues

apache / incubator-datalab

Apache DataLab (incubating)

https://datalab.apache.org/

Apache License 2.0

153 stars 59 forks source link

There is a vulnerability in hibernate 5.1.1.Final,upgrade recommended #1039

Open QiAnXinCodeSafe opened 3 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/apache/incubator-datalab/blob/423fa3a4404326aaac6aebc68b80a0f86dd775b4/services/billing-aws/pom.xml#L90-L94

CVE-2014-3558 CVE-2019-10219

Recommended upgrade version：5.1.3.FINAL

pjfanning commented 2 years ago

this is updated in master - https://github.com/apache/incubator-datalab/blob/master/services/billing-aws/pom.xml