[Bug 63725] New: Upgrade commons-compress to 1.19

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

[Bug 63725] New: Upgrade commons-compress to 1.19

Bugzilla from bugzilla@apache.org
https://bz.apache.org/bugzilla/show_bug.cgi?id=63725

            Bug ID: 63725
           Summary: Upgrade commons-compress to 1.19
           Product: POI
           Version: 4.0.x-dev
          Hardware: PC
            Status: NEW
          Severity: minor
          Priority: P2
         Component: POI Overall
          Assignee: [hidden email]
          Reporter: [hidden email]
  Target Milestone: ---

Consider updating commons-compress to 1.19, due to CVE-2019-12402.

The owasp plugin complained when I used poi-ooxml 4.1.0.

--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

[Bug 63725] Upgrade commons-compress to 1.19

Bugzilla from bugzilla@apache.org
https://bz.apache.org/bugzilla/show_bug.cgi?id=63725

PJ Fanning <[hidden email]> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 OS|                            |All
             Status|NEW                         |RESOLVED
         Resolution|---                         |FIXED

--- Comment #1 from PJ Fanning <[hidden email]> ---
Thanks for reporting this. The update is in trunk and will appear in next
release.

--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]