Uploaded image for project: 'SET - Setups'
  1. SET - Setups
  2. SET-216

Update PostgreSQL JDBC Driver 42.3.3 to 42.4.1 due to 3rd-party vulnerability issue CVE-2022-31197

    XMLWordPrintable

Details

    • Fix
    • Status: Released (View Workflow)
    • Minor
    • Resolution: Fixed
    • 1.13.13, 2.4.0
    • 1.13.14, 2.4.1, 2.5.0
    • None
    • CVE-2022-31197

    Description

      Current Situation

      The Setups for JobScheduler 1.13.x and JS7 deliver the PostgreSQL JDBC Driver 42.3.3.

      A vulnerability affects this version.

      We rate this vulnerability as LOW as our software does not support the exploit, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31197.

      Desired Behavior

      The Setup for JobScheduler 1 and JS7 should provide the PostgreSQL JDBC Driver with version 42.4.1 which solves the issue.

       

      Attachments

        Activity

          People

            sp Santiago Aucejo Petzoldt
            sp Santiago Aucejo Petzoldt
            Aditi Dubey Aditi Dubey (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: