[jira] [Updated] (SLING-11131) Update Apache HTTP Client Dependency for CVE-2020-13956

Andrei Tuicu (Jira) Tue, 08 Feb 2022 08:46:11 -0800


     [ 
https://issues.apache.org/jira/browse/SLING-11131?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andrei Tuicu updated SLING-11131:
---------------------------------
    Summary: Update Apache HTTP Client Dependency for CVE-2020-13956  (was: 
SLING-11124 - Update Apache HTTP Client Dependency for CVE-2020-13956)

> Update Apache HTTP Client Dependency for CVE-2020-13956
> -------------------------------------------------------
>
>                 Key: SLING-11131
>                 URL: https://issues.apache.org/jira/browse/SLING-11131
>             Project: Sling
>          Issue Type: Task
>          Components: Apache Sling Testing Clients
>    Affects Versions: Apache Sling Testing Clients 3.0.10
>            Reporter: Andrei Tuicu
>            Priority: Major
>
> org.apache.httpcomponents.httpclient 4.4.1 is vulnerable to 
> CVE-2020-13956(MEDIUM)[0].
> We need to update to the latest version of the Apache HTP Client 4.5.13. 
> [0] https://www.cvedetails.com/cve/CVE-2020-13956/



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (SLING-11131) Update Apache HTTP Client Dependency for CVE-2020-13956

Reply via email to