[jira] [Updated] (NIFI-9170) Upgrade commons-beanutils to 1.9.4 to mitigate CVE-2019-10086

Nadeem (Jira) Wed, 15 Sep 2021 05:32:05 -0700


     [ 
https://issues.apache.org/jira/browse/NIFI-9170?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Nadeem updated NIFI-9170:
-------------------------
    Resolution: Fixed
        Status: Resolved  (was: Patch Available)

> Upgrade commons-beanutils to 1.9.4 to mitigate CVE-2019-10086
> -------------------------------------------------------------
>
>                 Key: NIFI-9170
>                 URL: https://issues.apache.org/jira/browse/NIFI-9170
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework
>    Affects Versions: 1.14.0, 1.15.0
>            Reporter: Nadeem
>            Assignee: Nadeem
>            Priority: Major
>              Labels: Security
>          Time Spent: 50m
>  Remaining Estimate: 0h
>
> Apache Commons BeanUtils 1.9.4 addresses [ 
> CVE-2019-10086|https://nvd.nist.gov/vuln/detail/CVE-2019-10086] related to 
> classloading of PropertyUtilsBean class which was not protected by default
> Versions Affected: commons-beanutils-1.9.3 and earlier



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (NIFI-9170) Upgrade commons-beanutils to 1.9.4 to mitigate CVE-2019-10086

Reply via email to