Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Az.Accounts, Az.Monitor and Az.Resources use Newtonsoft.Json version 10.0.3 that has security vulnerabilities #21605

Closed
srinisudharsan opened this issue Apr 19, 2023 · 2 comments
Closed

Az.Accounts, Az.Monitor and Az.Resources use Newtonsoft.Json version 10.0.3 that has security vulnerabilities #21605

srinisudharsan opened this issue Apr 19, 2023 · 2 comments
Labels
bug This issue requires a change to an existing behavior in the product in order to be resolved. customer-reported needs-author-feedback More information is needed from author to address the issue.

Comments

@srinisudharsan
Copy link

Description

Please refer to this vulnerability.

I see a related pull request, however no updates to the corresponding psd1 files to release new versions of the module.
#21479

Issue script & Debug output

N/A

Environment data

N/A

Module versions

N/A

Error output

N/A
@srinisudharsan srinisudharsan added bug This issue requires a change to an existing behavior in the product in order to be resolved. needs-triage This is a new issue that needs to be triaged to the appropriate team. labels Apr 19, 2023
@ghost ghost added customer-reported and removed needs-triage This is a new issue that needs to be triaged to the appropriate team. labels Apr 19, 2023
@wyunchi-ms
Copy link
Contributor

Hi @srinisudharsan , thanks for your feedback! We have already update NewtonSoft.Json to 13.0.3. This will be published in this release acound May.

@wyunchi-ms wyunchi-ms added the needs-author-feedback More information is needed from author to address the issue. label Apr 20, 2023
@srinisudharsan
Copy link
Author

Thank you!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug This issue requires a change to an existing behavior in the product in order to be resolved. customer-reported needs-author-feedback More information is needed from author to address the issue.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@srinisudharsan @wyunchi-ms