New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Vulnerabilities in hibernate-core #1697
Comments
Eager loading is ignored in 5.4.24 org.hibernate:hibernate-core@5.4.24.Final so it was reverted to org.hibernate:hibernate-core@5.4.21.Final |
Do you know if this works in 5.4.27? |
@chrisknoll |
That's odd, i was hoping this was the issue that was in hibernate core: hibernate/hibernate-reactive#453 |
Yes, it's very strange changes. After 5.4.21 hibernate does not generate sql for collections with eager fetching before such collections are used |
We found a number of vulnerabilities (identified by Snyk) in the WebApi. Most of which can be fixed easily by updating the dependencies.
Issue
SQL Injection. Introduced through: org.hibernate:hibernate-core@5.4.2.Final, org.hibernate:hibernate-entitymanager@5.4.2.Final and others
Remediations
The text was updated successfully, but these errors were encountered: