[jira] [Commented] (NUTCH-3110) Upgrade to Tika 3.1.0

Tim Allison (Jira) Thu, 04 Sep 2025 09:16:54 -0700


    [ 
https://issues.apache.org/jira/browse/NUTCH-3110?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18018153#comment-18018153
 ]


Tim Allison commented on NUTCH-3110:
------------------------------------

Y, everything before and including 3.2.1 has a severe CVE when parsing a 
crafted PDF: CVE-2025-54988.

 

If you need me to create a shim for 3.2.2, let me know. 

> Upgrade to Tika 3.1.0
> ---------------------
>
>                 Key: NUTCH-3110
>                 URL: https://issues.apache.org/jira/browse/NUTCH-3110
>             Project: Nutch
>          Issue Type: Improvement
>          Components: dependency, parse-filter, parser
>    Affects Versions: 1.20
>            Reporter: Sebastian Nagel
>            Assignee: Sebastian Nagel
>            Priority: Major
>             Fix For: 1.22
>
>
> Upgrade either to the default Tika 3.1.0 or the shaded packages 3.1.0.0 
> provided by [~tallison], see discussion in [PR 
> #849|https://github.com/apache/nutch/pull/849].



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (NUTCH-3110) Upgrade to Tika 3.1.0

Reply via email to