Vulnerability issue with Azul Zulu 11.x and 17.x
A
Angelica Charry
Hello Neo4j community, We are having an issue with our installation of the desktop app of Neo4j, as our systems have flagged out that component as one that can be vulnerable to cyber attacks, is there any release available that could offer a solution for this?
Currently, the use of Neo4J has been reduced in our IT department due to this issue and it would be nice if we can get a solution for this as part of Neo4J installs.
Many thanks in advance.
Nissanka Fernando
Thanks for reporting Angelica, we’ll be reviewing this shortly with our engineers.
Nissanka Fernando
Thanks for raising this Angelica, we are investigating
A
Angelica Charry
Nissanka Fernando: Thanks for your reply, looking forward to hear from you again
Nissanka Fernando
Angelica Charry: We have released a new patch version of Neo4j Desktop (1.5.9) to fix this issue. Available via Check for updates in the app. Thanks for your patience.
A
Angelica Charry
Nissanka Fernando: These are wonderful news! Thank you so much for your help and support.
A
Angelica Charry
Nissanka Fernando: Hi again, unfortunately there is a newer version for Zulu that this latest update for neo4j doesn't include (it was released 27 days ago), therefore, we are once again having issues with these files as they are triggered as vulnerability issues for our systems.
The secured versions are now Zulu 17.46.19 and Zulu 11.68.17, is it possible to have a security update for these vulnerabilities, please?
Thanks