Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update JFR core to address CVE-2022-25647 with GSON library #867

Closed
jasonjkeller opened this issue May 27, 2022 · 0 comments · Fixed by #869
Closed

Update JFR core to address CVE-2022-25647 with GSON library #867

jasonjkeller opened this issue May 27, 2022 · 0 comments · Fixed by #869
Assignees
@jasonjkeller
Labels
bug Something isn't working as designed/intended

Comments

@jasonjkeller
Copy link
Contributor

Once newrelic/newrelic-jfr-core#218 is resolved and a new version of newrelic-jfr-core is released we will need to pull the updated dependency into the Java agent.

Related to: GHSA-4jrv-ppp4-jm57
@jasonjkeller jasonjkeller added the bug Something isn't working as designed/intended label May 27, 2022
@jasonjkeller jasonjkeller mentioned this issue May 27, 2022
Merged
@jasonjkeller jasonjkeller self-assigned this May 31, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jasonjkeller jasonjkeller

Labels
bug Something isn't working as designed/intended
Projects
Java Engineering Board
Archived in project
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update to jfr-daemon 1.8.0 newrelic/newrelic-java-agent
2 participants
@jasonjkeller @kford-newrelic