[jira] [Commented] (HTTPCLIENT-2062) Apache commons-codec has a vulnerability

Michael Osipov (Jira) Tue, 17 Mar 2020 03:32:21 -0700


    [ 
https://issues.apache.org/jira/browse/HTTPCLIENT-2062?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17060806#comment-17060806
 ]


Michael Osipov commented on HTTPCLIENT-2062:
--------------------------------------------

Which HttpClient version are you referring to?

> Apache commons-codec has a vulnerability
> ----------------------------------------
>
>                 Key: HTTPCLIENT-2062
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-2062
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>            Reporter: Gal Ben Yair
>            Priority: Major
>
> Apache commons-codec 1.11 used in this library has a vulnerability that is 
> detected by whitesource.
> |Apache commons-codec before version “commons-codec-1.13-RC1” is vulnerable 
> to information disclosure due to Improper Input validation.|
> Please upgrade the library used to 1.14



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Commented] (HTTPCLIENT-2062) Apache commons-codec has a vulnerability

Reply via email to