Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Grails to 5.1.9 #344

Closed
joe-crawford opened this issue Jul 19, 2022 · 0 comments
Closed

Update Grails to 5.1.9 #344

joe-crawford opened this issue Jul 19, 2022 · 0 comments
Assignees
@joe-crawford
Labels
dependencies
Milestone
5.2.0

Comments

@joe-crawford
Copy link
Contributor

Update mdm-core and plugins in @MauroDataMapper-Plugins to Grails 5.1.9.

Grails has released a fix to a Remote Code Execution vulnerability that affects Grails running on Java 8 (https://grails.org/blog/2022-07-18-rce-vulnerability.html). We are running on Java 17 so the RCE is not confirmed on mdm-core, but an upgrade is strongly suggested.

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35912
@joe-crawford joe-crawford added this to the 5.2.0 milestone Jul 19, 2022
@joe-crawford joe-crawford self-assigned this Jul 19, 2022
@joe-crawford joe-crawford moved this to Backlog in MDM State Jul 19, 2022
Repository owner moved this from Backlog to Merged to Develop / Waiting to release in MDM State Aug 5, 2022
@joe-crawford joe-crawford moved this from Merged to Develop / Waiting to release to Released in MDM State Sep 1, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@joe-crawford joe-crawford

Labels
dependencies
Projects
MDM State
Status: Released
Milestone
5.2.0
Development

No branches or pull requests
1 participant
@joe-crawford