Philipp Ottlinger created RAT-275:
-------------------------------------
Summary: Update httpclient to fix CVE once a new doxia-core
release is available
Key: RAT-275
URL: https://issues.apache.org/jira/browse/RAT-275
Project: Apache Rat
Issue Type: Bug
Affects Versions: 0.13, 0.14
Reporter: Philipp Ottlinger
Once a newer doxia version is available update to it in order to fix:
[https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-1016906]
h2. Remediation
Upgrade {{org.apache.httpcomponents:httpclient}} to version 4.5.13, 5.0.3 or
higher.
Currently the most up2date doxia uses v4.5.8 of httpclient.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
