[ 
https://issues.apache.org/jira/browse/NIFI-4806?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16621227#comment-16621227
 ] 

Joseph Witt commented on NIFI-4806:
-----------------------------------

also see a lot of deprecation warnings about StringEscapeUtils deprecated in 
commons-lang3 and now in commons-text.  Fixing that.  And updating all use of 
commons-lang3

> Upgrade to Tika/Tika-Parsers 1.19 to resolve TIKA-2535 and CVEs reported 
> against all releases prior to 1.19
> -----------------------------------------------------------------------------------------------------------
>
>                 Key: NIFI-4806
>                 URL: https://issues.apache.org/jira/browse/NIFI-4806
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Extensions
>    Affects Versions: 1.5.0
>            Reporter: Joseph Witt
>            Assignee: Joseph Witt
>            Priority: Blocker
>             Fix For: 1.8.0
>
>
> The nifi-media-processors depend on Tika-Parsers 1.16 as of now.  They need 
> to be upgraded to at least Tika-Parsers 1.18 to resolve the licensing problem 
> identified to the Tika team and which they resolved in 
> https://issues.apache.org/jira/browse/TIKA-2535
>  
> We aren't susceptible to the licensing problem at this time because when we 
> did the last update for Tika-Parsers this was flagged and excluded though we 
> could be exposing bugs for certain datayptes we'd do mime detection on 
> (maybe).  I have a comment about this in our pom.
>  
> This Jira is to upgrade, ensure no invalid libs are used, and clean up the 
> comments and move on.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to