Hi Steffen, we are currently working on a release.
Be reassured, the LDPA API does *NOT* leverage the mina HTTP layer, so there is absolutely no risk on this side.
On 28/04/2022 14:47, Wartner , Steffen - SID-LRZS wrote:
Hello, I'm using the Apache Directory LDAP API for my projects. There is the CVE (https://nvd.nist.gov/vuln/detail/CVE-2021-41973) for the package mina-core 2.1.3 and it is recommended to update it to 2.1.5. I updated the package in the Apache Directory LDAP API 2.1.0 release for my projects. When will the package be updated in the next official release? Best regards Steffen Wartner --------------------------------------------------------------------- To unsubscribe, e-mail: api-unsubscr...@directory.apache.org For additional commands, e-mail: api-h...@directory.apache.org
-- *Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE T. +33 (0)4 89 97 36 50 P. +33 (0)6 08 33 32 61 emmanuel.lecha...@busit.com https://www.busit.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: api-unsubscr...@directory.apache.org For additional commands, e-mail: api-h...@directory.apache.org