[
https://issues.apache.org/jira/browse/AXIOM-521?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Felix Schnabel updated AXIOM-521:
---------------------------------
Description:
The most recent version of Axiom API (1.4.0) currently depends on the
org.apache.james:apache-mime4j-core:0.8.6 artifact which has a reported
security vulnerability.
Would it be possible to release a Patch for Axiom (1.4.1) where this dependency
is updated to >= 0.8.10?
Links:
- Axiom API:
[https://mvnrepository.com/artifact/org.apache.ws.commons.axiom/axiom-api/1.4.0]
- Mime4j Core:
[https://mvnrepository.com/artifact/org.apache.james/apache-mime4j-core]
> Update apache-mime4j-core dependency
> ------------------------------------
>
> Key: AXIOM-521
> URL: https://issues.apache.org/jira/browse/AXIOM-521
> Project: Axiom
> Issue Type: Dependency upgrade
> Reporter: Felix Schnabel
> Priority: Major
>
> The most recent version of Axiom API (1.4.0) currently depends on the
> org.apache.james:apache-mime4j-core:0.8.6 artifact which has a reported
> security vulnerability.
> Would it be possible to release a Patch for Axiom (1.4.1) where this
> dependency is updated to >= 0.8.10?
>
> Links:
> - Axiom API:
> [https://mvnrepository.com/artifact/org.apache.ws.commons.axiom/axiom-api/1.4.0]
> - Mime4j Core:
> [https://mvnrepository.com/artifact/org.apache.james/apache-mime4j-core]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@ws.apache.org
For additional commands, e-mail: dev-h...@ws.apache.org
