[
https://issues.apache.org/jira/browse/NIFI-10146?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17557122#comment-17557122
]
ASF subversion and git services commented on NIFI-10146:
--------------------------------------------------------
Commit 47121614a205d99f53a619a656456757056fb595 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=47121614a2 ]
NIFI-10146 Upgraded Apache Tika from 2.4.0 to 2.4.1
- Removed direct dependency on metadata-extractor to inherit newer transitive
version
Signed-off-by: Pierre Villard <[email protected]>
This closes #6140.
> Upgrade Apache Tika to 2.4.1
> ----------------------------
>
> Key: NIFI-10146
> URL: https://issues.apache.org/jira/browse/NIFI-10146
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework, Extensions
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Minor
> Labels: dependency-upgrade
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Apache Tika
> [2.4.1|https://dist.apache.org/repos/dist/release/tika/2.4.1/CHANGES-2.4.1.txt]
> includes several improvements and also includes a newer version of
> {{metadata-extractor}}, which resolves CVE-2022-24613 and CVE-2022-24614
> related to processing crafted JPEG files.
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
