Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

System.Text.Json has a security vulnerability #7101

Merged
merged 3 commits into from
Jul 17, 2024

Conversation

tmasternak
Copy link
Member

@tmasternak tmasternak commented Jul 11, 2024

Addressing security vulnerabilities on transitive dependencies:

@tmasternak tmasternak requested a review from NChaganlal July 11, 2024 12:30
@tmasternak tmasternak changed the title Backport to 8.2: Vulnerabilities in transitive dependencies Vulnerabilities in transitive dependencies Jul 11, 2024
@tmasternak tmasternak added this to the 8.2.3 milestone Jul 11, 2024
NChaganlal
NChaganlal previously approved these changes Jul 11, 2024
@tmasternak tmasternak changed the title Vulnerabilities in transitive dependencies Enforce System.Text.Json and System.Formats.Asn1 versions to address security vulnerabilities Jul 11, 2024
@NChaganlal NChaganlal dismissed their stale review July 11, 2024 15:40

New information has arise that requires a deeper review

@tmasternak tmasternak changed the title Enforce System.Text.Json and System.Formats.Asn1 versions to address security vulnerabilities Enforce System.Text.Json version to address security vulnerabilities Jul 15, 2024
@tmasternak tmasternak merged commit b032f15 into release-8.2 Jul 17, 2024
3 checks passed
@tmasternak tmasternak deleted the patch-asn1-backport-8.2 branch July 17, 2024 13:59
@tmasternak tmasternak changed the title Enforce System.Text.Json version to address security vulnerabilities System.Text.Json has a security vulnerability Jul 22, 2024
@tmasternak tmasternak added the Bug label Jul 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants