-
Task
-
Resolution: Done
-
High
-
None
-
A&AI Sprint 9, A&AI Sprint 10, AAI Sprint 11, AAI Sprint 12, AAI Sprint 13
The following security issues have been identified by Nexus IQ Server (tool used by LF) on 2017-12-23. See the attached report - RED Security issues.
- relates to
-
AAI-586 Review security issues: aai-aai-common
- Closed
1.
|
Security: CVE-2017-17485 jackson-databind 2.8.10 | Closed | jimmydot | |
2.
|
Reintroduce Sparky Logback Config | Closed | da490c | |
3.
|
Obfuscate Sparky SSL Keystore Password | Closed | da490c | |
4.
|
Update aai/test-config with sparky spring-boot application configuration | Closed | da490c | |
5.
|
[Bug] Fix incorrect response headers from new Servlet responses | Closed | richarv | |
6.
|
[Bug]: Fix where FE war is unpacked so that dev and lab environments are consistent | Closed | da490c | |
7.
|
[Bug]: Fix non-standard environment variable declaration | Closed | da490c | |
8.
|
[BUG] Invalid keystore in aai/test-config for sparky | Closed | da490c | |
9.
|
[BUG] Need to update Sparky deployment scripts in test-config | Closed | da490c | |
10.
|
[BUG] portal.properties not in correct test-config path | Closed | da490c |