[
https://issues.apache.org/jira/browse/TIKA-2834?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16858540#comment-16858540
]
Jorge Spinsanti commented on TIKA-2834:
---------------------------------------
Hi all,
PDFBox reported a vulnerability in version 2.0.14. Details:
{quote}CVE-2019-0228 XML External Entity vulnerability
2019-04-12
Due to a XML External Entity vulnerability we strongly recommend to update to
the most recent version of Apache PDFBox.
Versions Affected: Apache PDFBox 2.0.14 only
Mitigation: Upgrade to Apache PDFBox 2.0.15
{quote}
Do you plan to create tika-1.21.1 applying this upgrade?
Regards
> Upgrade to PDFBox 2.0.14 when available
> ---------------------------------------
>
> Key: TIKA-2834
> URL: https://issues.apache.org/jira/browse/TIKA-2834
> Project: Tika
> Issue Type: Task
> Reporter: Tim Allison
> Assignee: Tim Allison
> Priority: Major
> Fix For: 1.21
>
>
> The vote just passed. This should be available shortly.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
