Bug #14640

[API][Workbench] Security vulnerability on activejob

Added by Lucas Di Pentima 7 months ago. Updated 5 months ago.

Status:
Resolved
Priority:
Normal
Assigned To:
Category:
-
Target version:
Start date:
12/18/2018
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Story points:
-
Release relationship:
Auto

Description

There's a security issue with activejob >= 4.2.0, < 4.2.11: https://nvd.nist.gov/vuln/detail/CVE-2018-16476


Subtasks

Task #14641: Review 14640-api-wb-activejob-upgradeResolvedLucas Di Pentima

Associated revisions

Revision d5508647
Added by Lucas Di Pentima 7 months ago

Merge branch '14640-api-wb-activejob-upgrade'
Closes #14640

Arvados-DCO-1.1-Signed-off-by: Lucas Di Pentima <>

History

#1 Updated by Lucas Di Pentima 7 months ago

Update at 2c9a3ec26 - branch 14640-api-wb-activejob-upgrade
Test run: https://ci.curoverse.com/job/developer-run-tests/1017/

API & Workbench rails upgrade to 4.2.11

#2 Updated by Tom Clegg 7 months ago

LGTM

#3 Updated by Lucas Di Pentima 7 months ago

  • Target version set to 2018-12-21 Sprint

#4 Updated by Lucas Di Pentima 7 months ago

  • Status changed from In Progress to Resolved

#5 Updated by Tom Morris 5 months ago

  • Release set to 15

Also available in: Atom PDF