Closed db2222 closed 2 years ago
The NuGet package Oracle.ManagedDataAccess.Core version 3.21.4 uses System.DirectoryServices.Protocols version 5.0.0.
This package has a vulnerability. See https://www.nuget.org/packages/System.DirectoryServices.Protocols/5.0.0. I noticed this as LinqPad shows a warning.
Therefore updated Oracle.ManagedDataAccess.Core to 3.21.61. This updates System.DirectoryServices.Protocols to 5.0.1 which hasn't got this vulnerability.
The NuGet package Oracle.ManagedDataAccess.Core version 3.21.4 uses System.DirectoryServices.Protocols version 5.0.0.
This package has a vulnerability. See https://www.nuget.org/packages/System.DirectoryServices.Protocols/5.0.0. I noticed this as LinqPad shows a warning.
Therefore updated Oracle.ManagedDataAccess.Core to 3.21.61. This updates System.DirectoryServices.Protocols to 5.0.1 which hasn't got this vulnerability.