CVE in iris library

[PawelScibiorski]

Iris which is used by multiple ODIM components is vulnerable to a few CVEs

github.com/kataras/iris/v12 v12.1.8 is vulnerable to:
CVE-2021-42576 [mitre]
CVE-2021-23772 [mitre]
CVE-2021-29272 [mitre]

[Bharath-KKB]

Iris which is used by multiple ODIM components is vulnerable to a few CVEs

github.com/kataras/iris/v12 v12.1.8 is vulnerable to: CVE-2021-42576 [mitre] CVE-2021-23772 [mitre] CVE-2021-29272 [mitre]

Hi Pawel many thanks for reporting this. Can you pls create issues at https://jira.lfnetworking.org/projects/ODIM/issues/ODIM-87?filter=allopenissues going forward ? We do not actively track the issues in github. You will need a LFN login for creating issues in the JIRA.

[amar-shalgar]

This issue is resolved in ODIM services