Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Upgrade all usages of System.Drawing.Common in Tentacle #689

Closed
1 task done
evolutionise opened this issue Nov 26, 2023 · 1 comment · Fixed by #694 or #700
Closed
1 task done

Upgrade all usages of System.Drawing.Common in Tentacle #689

evolutionise opened this issue Nov 26, 2023 · 1 comment · Fixed by #694 or #700
Assignees
Labels
team/server-at-scale Represents the Server at Scale team under the Hosting & Execution Group

Comments

@evolutionise
Copy link
Contributor

Team

  • I've assigned a team label to this issue

What happened?

CVE-2021-24112 in System.Drawing.Common - we need to update all references. All references are transitive.

The CVE isn't exploitable because it only applies to versions of .NET Core and Mono that we don't use.

Reproduction

N/A

Error and Stacktrace

No response

More Information

No response

Workaround

No response

@octoreleasebot
Copy link

Upgraded libraries in Halibut that depended on a vulnerable System.Drawing.Common package. The vulnerability wasn’t exploitable as Tentacle doesn’t use the affected runtimes but it was still being flagged by customer vulnerability scanners

@acodrington acodrington mentioned this issue Nov 28, 2023
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
team/server-at-scale Represents the Server at Scale team under the Hosting & Execution Group
Projects
None yet
2 participants