[
https://issues.apache.org/jira/browse/NIFI-10694?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17623974#comment-17623974
]
Mike R commented on NIFI-10694:
-------------------------------
[~wesley.philip] expect version 1.19.0 to be released when NiFi 1.19.0 is
released. NiFi 1.18.0 was just released a 3 weeks ago, so it might be a few
weeks before the next release. Someone such as [~exceptionfactory] would have a
better understanding of when the next release would occur as well as if the
Registry is vulnerable.
> Does CVE-2022-42889 affect Nifi Registry ?
> ------------------------------------------
>
> Key: NIFI-10694
> URL: https://issues.apache.org/jira/browse/NIFI-10694
> Project: Apache NiFi
> Issue Type: Bug
> Reporter: Wesley Philip
> Priority: Major
>
> Nifi Registry 17 contains this library:
>
> /opt/nifi/nifi-toolkit-current/lib/commons-text-1.8.jar
>
> Is Nifi Registry affected, and are their plans to address this CVE?
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
