[
https://issues.apache.org/jira/browse/NIFI-10100?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17555366#comment-17555366
]
ASF subversion and git services commented on NIFI-10100:
--------------------------------------------------------
Commit bd45eb4995ad661f5b524e08bb0f6785cf0cdfb0 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=bd45eb4995 ]
NIFI-10100 Upgraded Jersey to 2.35
- Replaced individual version references with Jersey BOM dependency
Signed-off-by: Nathan Gough <[email protected]>
This closes #6106.
> Upgrade Jersey to 2.35
> ----------------------
>
> Key: NIFI-10100
> URL: https://issues.apache.org/jira/browse/NIFI-10100
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework, MiNiFi, NiFi Registry, NiFi Stateless
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> Multiple components use Jersey libraries to implement server and client HTTP
> services. Jersey dependencies should be standardized using the Bill of
> Materials {{jersey-bom}} dependency to resolve
> [CVE-2021-28168|https://nvd.nist.gov/vuln/detail/CVE-2021-28168] related to
> temporary file handling.
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
