[jira] [Commented] (TIKA-2570) Tika 1.17 uses vulnerable Jackson version 2.9.2

Wed, 21 Feb 2018 14:56:23 -0800 

    [ 
https://issues.apache.org/jira/browse/TIKA-2570?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16372152#comment-16372152
 ] 

Hudson commented on TIKA-2570:
------------------------------

SUCCESS: Integrated in Jenkins build Tika-trunk #1437 (See 
[https://builds.apache.org/job/Tika-trunk/1437/])
Fix for TIKA-2570 contributed by ewanmellor. (commits: 
[https://github.com/apache/tika/commit/55e10455cd655aa0df9a54cba7dcb244a94a181e])
* (edit) tika-parsers/pom.xml
* (edit) tika-translate/pom.xml


> Tika 1.17 uses vulnerable Jackson version 2.9.2
> -----------------------------------------------
>
>                 Key: TIKA-2570
>                 URL: https://issues.apache.org/jira/browse/TIKA-2570
>             Project: Tika
>          Issue Type: Task
>            Reporter: Julian Reschke
>            Priority: Minor
>             Fix For: 1.18, 2.0.0
>
>
> See https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17485



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to