Having vulnerabilities on Microsoft.Owin.Security.OpenIdConnect, 4.2.2

[luanhang1807]

Hi Recently I have run dependency-check tool from https://github.com/jeremylong/DependencyCheck/releases/tag/v8.2.1 and It reported Vulnerabilities that have ID are CVE-2007-1652 (https://nvd.nist.gov/vuln/detail/CVE-2007-1652) and CVE-2007-1651 (https://nvd.nist.gov/vuln/detail/CVE-2007-1651)

I appreciate it if you can tell me how to fix these issues.

[Tratcher]

That tool appears to be wrong, those CVEs are unrelated. https://github.com/jeremylong/DependencyCheck/issues/3059

[ghost]

This issue has been resolved and has not had any activity for 1 day. It will be closed for housekeeping purposes.

See our Issue Management Policies for more information.