[
https://issues.apache.org/jira/browse/MNG-7256?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Pratiksha Kumbharkar updated MNG-7256:
--------------------------------------
Description:
Hi Team,
We are facing jsoup component vulnerability with maven version 3.8.2 which is
the latest released version of maven. The CVE details are: CVE-2021-37714
Can you please provide the details of next maven version release with this fix
in it.
Jsoup version which is getting installed while installing maven 3.8.2 is
v1.12.1.
Thanks & Regards,
Pratiksha.
was:
Hi Team,
We are facing jsoup component vulnerability with maven version 3.8.2 which is
the latest released version of maven. The CVE details are: CVE-2021-37714
Can you please provide the details of next maven version release with this fix
in it.
Thanks & Regards,
Pratiksha.
> Maven version 3.8.2 has jsoup vulnerability
> -------------------------------------------
>
> Key: MNG-7256
> URL: https://issues.apache.org/jira/browse/MNG-7256
> Project: Maven
> Issue Type: Bug
> Reporter: Pratiksha Kumbharkar
> Priority: Major
>
> Hi Team,
> We are facing jsoup component vulnerability with maven version 3.8.2 which is
> the latest released version of maven. The CVE details are: CVE-2021-37714
> Can you please provide the details of next maven version release with this
> fix in it.
> Jsoup version which is getting installed while installing maven 3.8.2 is
> v1.12.1.
>
> Thanks & Regards,
> Pratiksha.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
