Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-48273

Backport CVE fixes from yaml-cpp v0.6.3 to v0.6.2

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major - P3
    • Resolution: Fixed
    • 4.5 Desired
    • 4.4.0-rc7, 4.7.0
    • Build
    • None
    • Fully Compatible
    • Dev Platform 2020-06-01

    Description

      We had a request to upgrade yaml-cpp to 0.6.3+ to get some CVE fixes (see SERVER-44081). Unfortunately, at least one unfixed breaking change is preventing us from doing that right now (see SERVER-43980). What we will do instead is to backport the CVE fixes and then see if we can work with the devloper to get a version 0.6.4+ released that we can build against.

      Attachments

        Issue Links

          Activity

            People

              ryan.egesdahl@mongodb.com Ryan Egesdahl
              ryan.egesdahl@mongodb.com Ryan Egesdahl
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: