[MODSER-2] Hibernate 5.6.x for Poppy Created: 21/Feb/23 Updated: 28/Jun/23 Resolved: 28/Jun/23 |
|
| Status: | Closed |
| Project: | mod-serials-management |
| Components: | None |
| Affects versions: | None |
| Fix versions: | None |
| Type: | Tech Debt | Priority: | P3 |
| Reporter: | Julian Ladisch | Assignee: | Owen Stephens |
| Resolution: | Done | Votes: | 0 |
| Labels: | security, security-reviewed | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||
| Sprint: | |||||||||
| Development Team: | K-Int | ||||||||
| Release: | Poppy (R2 2023) | ||||||||
| RCA Group: | Related dependency upgrade | ||||||||
| Description |
|
Hibernate 5.4 and 5.5 have reached end of life and have been unsupported since 2021-12-16, see older series at https://hibernate.org/orm/releases/ Upgrading to the latest 5.4.x version 5.4.33.Final fixes the known issue https://nvd.nist.gov/vuln/detail/CVE-2020-25638 but 5.4.x is unsupported and may contain unknown issues. Therefore a migration plan for 5.6.x is needed. |
| Comments |
| Comment by Julian Ladisch [ 21/Feb/23 ] |
|
Please adjust this Jira as needed! |
| Comment by Khalilah Gambrell [ 09/May/23 ] |
|
Hey Owen Stephens is this work still planned for the Poppy release? |
| Comment by Owen Stephens [ 28/Jun/23 ] |