[jira] [Created] (HTTPCLIENT-2072) Security vulnerability with apache commons-code 1.11, upgrade to 1.13

James Holland (Jira) Fri, 03 Apr 2020 04:39:11 -0700

James Holland created HTTPCLIENT-2072:
-----------------------------------------


             Summary: Security vulnerability with apache commons-code 1.11, 
upgrade to 1.13
                 Key: HTTPCLIENT-2072
                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-2072
             Project: HttpComponents HttpClient
          Issue Type: Bug
          Components: HttpClient (classic)
    Affects Versions: 4.5.12
            Reporter: James Holland
             Fix For: 4.5.13


Apache commons-codec before version “commons-codec-1.13-RC1” is vulnerable to 
information disclosure due to Improper Input validation.

See 
https://github.com/apache/commons-codec/commit/48b615756d1d770091ea3322eefc08011ee8b113

 

 

 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Created] (HTTPCLIENT-2072) Security vulnerability with apache commons-code 1.11, upgrade to 1.13

Reply via email to