Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-69898

saml plugin affected by CVE -2022-42003;42004

    XMLWordPrintable

Details

    • Bug
    • Status: Resolved (View Workflow)
    • Minor
    • Resolution: Fixed
    • saml-plugin
    • None
    • saml:4.354.vdc8c005cda_34
    • 4.361.v79b_c2d76d2b_b

    Description

      saml plugin depends on jackson-databind-2.13.3, which is affected by CVEs:

      https://nvd.nist.gov/vuln/detail/CVE-2022-42003

      https://nvd.nist.gov/vuln/detail/CVE-2022-42004

      Attachments

        Issue Links

          links to

          Web Link PR

          Activity

            There are no comments yet on this issue.

            People

              ifernandezcalvo Ivan Fernandez Calvo
              sandraantunes Sandra Antunes
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: