[
https://issues.apache.org/jira/browse/OFBIZ-5801?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15042181#comment-15042181
]
Jacques Le Roux commented on OFBIZ-5801:
----------------------------------------
Last time I was too quick, I did not check enough Axis2 dependencies. It
depends not only on Apache Axiom but also Apache Neethi. Changing title...
> Upgrade Axis2 to 1.6.3
> ----------------------
>
> Key: OFBIZ-5801
> URL: https://issues.apache.org/jira/browse/OFBIZ-5801
> Project: OFBiz
> Issue Type: Sub-task
> Components: framework
> Affects Versions: Trunk
> Reporter: Jacques Le Roux
> Priority: Minor
> Labels: Axis2, vulnerability
>
> Last time I tried to upgrade Axis2 to last release (1.6.2 from currently
> 1.5.2) SOAP tests failed (see http://svn.apache.org/r1564661)
> There is a new medium issue with Axis2
> (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-6107) not
> corrected yet (https://issues.apache.org/jira/browse/AXIS2C-1619).
> So 1st step is to adapt our tests to work with 1.6.2, then when this
> vulnerability will be corrected update to last Axis2 release.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
