[MSHARED-1133] Switch to JUnit 5 and drop junit-addons - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Dependency upgrade
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: maven-reporting-impl-4.0.0-M3, maven-reporting-impl-4.0.0
Component/s: maven-reporting-impl
Labels:
None

Description

fixes bellow reported issues in tests

Provides transitive vulnerable dependency xerces:xercesImpl:2.6.2
CVE-2012-0881 7.5 Vulnerability with medium severity found
CVE-2018-2799 5.3 Uncontrolled Resource Consumption vulnerability pending CVSS allocation
CVE-2013-4002 7.1 Uncontrolled Resource Consumption vulnerability pending CVSS allocation
CVE-2020-14338 5.3 Improper Input Validation vulnerability pending CVSS allocation
CVE-2009-2625 5.0 Vulnerability with medium severity found
CVE-2017-10355 5.3 Uncontrolled Resource Consumption vulnerability pending CVSS allocation
CVE-2022-23437 6.5 XML Injection (aka Blind XPath Injection) vulnerability pending CVSS allocation
Results powered by Checkmarx(c)

Attachments

Issue Links

links to

GitHub Pull Request #11

Activity

People

Assignee:: Sylwester Lachiewicz

Reporter:: Sylwester Lachiewicz

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 11/Sep/22 15:41

Updated:: 14/Dec/23 16:55

Resolved:: 11/Sep/22 22:00