Java Vulnerability - Java upgrade recommended

LabKey Support Forum
Java Vulnerability - Java upgrade recommended hannahb  2022-04-22 15:09
Status: Active
 

We were recently made aware of a potential Java vulnerability affecting ECDSA (Elliptic Curve Digital Signature Algorithm) signatures. For more details, see https://nvd.nist.gov/vuln/detail/CVE-2022-21449
This vulnerability affects deployments that use ECDSA, however, we strongly recommend that every deployment immediately upgrade to the latest Java release, 17.0.3+7.

As always, please reach out if you have any questions or concerns for us.