[jira] [Created] (TIKA-2561) Tika Parser includes oudated/vulnerable version of JSoup

Asela (JIRA) Wed, 31 Jan 2018 14:29:39 -0800

Asela created TIKA-2561:
---------------------------

             Summary: Tika Parser includes oudated/vulnerable version of JSoup
                 Key: TIKA-2561
                 URL: https://issues.apache.org/jira/browse/TIKA-2561
             Project: Tika
          Issue Type: Bug
          Components: parser
    Affects Versions: 1.17
            Reporter: Asela



org.apache.tika:tika-parsers:1.17 pulls in dependency JSoup 1.7.2.

 

JSoup versions older than 1.8.3 have a vulnerability in parsing.

 

https://nvd.nist.gov/vuln/detail/CVE-2015-6748



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Created] (TIKA-2561) Tika Parser includes oudated/vulnerable version of JSoup

Reply via email to