Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update json-smart dependency to fix CVE-2021-27568 #687

Closed
mmm83 opened this issue Apr 6, 2021 · 3 comments
Closed

Update json-smart dependency to fix CVE-2021-27568 #687

mmm83 opened this issue Apr 6, 2021 · 3 comments

Comments

@mmm83
Copy link
Contributor

mmm83 commented Apr 6, 2021
edited
Loading

New version of json-smart has just been released. Please update this dependency as it fixes critical security violation CVE-2021-27568.

Might be duplicate of: #676
mmm83 added a commit to mmm83/JsonPath that referenced this issue Apr 6, 2021
@mmm83
json-path#687 update json-smart to fix CVE-2021-27568
dc73bb1
kallestenflo pushed a commit that referenced this issue Apr 9, 2021
@mmm83
#687 update json-smart to fix CVE-2021-27568 (#688)
1987038
@marcingrzejszczak marcingrzejszczak mentioned this issue Apr 12, 2021
Closed
@nileshsalpe
Copy link

nileshsalpe commented Apr 19, 2021
edited
Loading

We are waiting for this high severity vulnerability to be fixed.
The change is already merged to master please create a new release 2.5.xx?

@fbiville fbiville mentioned this issue Apr 21, 2021
Closed
@bond- bond- mentioned this issue May 19, 2021
Closed
@bond-
Copy link

bond- commented May 19, 2021

@kallestenflo ☝️

@kallestenflo
Copy link
Contributor

Fixed in 2.6.0

@falkena falkena mentioned this issue Oct 1, 2021
Merged
6 tasks
@fangpenlin fangpenlin mentioned this issue Mar 14, 2023
Closed
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@kallestenflo @bond- @nileshsalpe @mmm83