[jira] [Created] (FELIX-6391) Vulnerability in org.apache.felix : org.apache.felix.http.jetty : 4.1.4

Akanksha Jain (Jira) Wed, 03 Mar 2021 00:26:05 -0800

Akanksha Jain created FELIX-6391:
------------------------------------

             Summary: Vulnerability in org.apache.felix : 
org.apache.felix.http.jetty : 4.1.4
                 Key: FELIX-6391
                 URL: https://issues.apache.org/jira/browse/FELIX-6391
             Project: Felix
          Issue Type: Bug
            Reporter: Akanksha Jain



Apache Felix Http Jetty: 4.1.4 has embedded commons-io.2.6.jar which is 
vulnerable to 
"sonatype-2018-0705". 
The vulnerability has been fixed in commons-io: 2.7.

Related Commons-io JIRA: https://issues.apache.org/jira/browse/IO-556


Need to update commons-io latest version in Apache Felix HTTP Jetty module.

 

 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (FELIX-6391) Vulnerability in org.apache.felix : org.apache.felix.http.jetty : 4.1.4

Reply via email to