[jira] [Commented] (ISIS-2977) jdom dependency has XXE vulnerability

ASF subversion and git services (Jira) Wed, 16 Mar 2022 05:20:05 -0700


    [ 
https://issues.apache.org/jira/browse/ISIS-2977?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17507547#comment-17507547
 ]


ASF subversion and git services commented on ISIS-2977:
-------------------------------------------------------

Commit e6d830a38bc9f90057d6dd67bc0aa7d76f880a31 in isis's branch 
refs/heads/master from PJ Fanning
[ https://gitbox.apache.org/repos/asf?p=isis.git;h=e6d830a ]

ISIS-2977: Use secure version of jdom

> jdom dependency has XXE vulnerability
> -------------------------------------
>
>                 Key: ISIS-2977
>                 URL: https://issues.apache.org/jira/browse/ISIS-2977
>             Project: Isis
>          Issue Type: Improvement
>          Components: Isis Core
>    Affects Versions: 2.0.0-M7
>            Reporter: PJ Fanning
>            Assignee: Andi Huber
>            Priority: Major
>              Labels: vulnerability
>             Fix For: 2.0.0-RC1
>
>
> https://github.com/advisories/GHSA-2363-cqg2-863c
> https://github.com/apache/isis/blob/master/core/pom.xml#L137



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (ISIS-2977) jdom dependency has XXE vulnerability

Reply via email to