[jira] [Closed] (HTTPCLIENT-2072) Security vulnerability with apache commons-code 1.11, upgrade to 1.13

Michael Osipov (Jira) Fri, 03 Apr 2020 08:24:10 -0700


     [ 
https://issues.apache.org/jira/browse/HTTPCLIENT-2072?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Michael Osipov closed HTTPCLIENT-2072.
--------------------------------------
    Fix Version/s:     (was: 4.5.13)
       Resolution: Duplicate

> Security vulnerability with apache commons-code 1.11, upgrade to 1.13
> ---------------------------------------------------------------------
>
>                 Key: HTTPCLIENT-2072
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-2072
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>          Components: HttpClient (classic)
>    Affects Versions: 4.5.12
>            Reporter: James Holland
>            Priority: Major
>
> Apache commons-codec before version “commons-codec-1.13-RC1” is vulnerable to 
> information disclosure due to Improper Input validation.
> See 
> https://github.com/apache/commons-codec/commit/48b615756d1d770091ea3322eefc08011ee8b113
>  
>  
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Closed] (HTTPCLIENT-2072) Security vulnerability with apache commons-code 1.11, upgrade to 1.13

Reply via email to