[
https://issues.apache.org/jira/browse/NIFI-9869?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17517157#comment-17517157
]
ASF subversion and git services commented on NIFI-9869:
-------------------------------------------------------
Commit c02b4feee25c84098ab5a7f0c1cafefa8e442675 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=c02b4feee2 ]
NIFI-9869 Upgraded Apache POI from 5.0.0 to 5.2.2
- Upgraded direct dependencies in nifi-email-processors and nifi-poi-processors
- Upgraded transitive dependency in nifi-media-bundle
This closes #5927
Signed-off-by: Mike Thomsen <[email protected]>
> Upgrade Apache POI to 5.2.2
> ---------------------------
>
> Key: NIFI-9869
> URL: https://issues.apache.org/jira/browse/NIFI-9869
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Extensions
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Minor
> Labels: dependency-upgrade, security
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Several extension modules use Apache POI for parsing Microsoft Office
> documents. Apache POI version 5.2.2 includes several bug fixes, including a
> resolution for CVE-2022-26336, which impacts poi-scratchpad.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
