[jira] [Commented] (TIKA-3690) upgrade to poi 5.2.1

Tim Allison (Jira) Fri, 11 Mar 2022 11:23:05 -0800


    [ 
https://issues.apache.org/jira/browse/TIKA-3690?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17505090#comment-17505090
 ]


Tim Allison commented on TIKA-3690:
-----------------------------------

Yikes!  Opened TIKA-3699.

> upgrade to poi 5.2.1
> --------------------
>
>                 Key: TIKA-3690
>                 URL: https://issues.apache.org/jira/browse/TIKA-3690
>             Project: Tika
>          Issue Type: Improvement
>          Components: parser
>            Reporter: PJ Fanning
>            Priority: Major
>             Fix For: 2.3.1, 1.28.2
>
>
> There is a POI CVE that may or may not affect TIka - 
> https://lists.apache.org/thread/hqc0ohg0z1j0p4ysm3y4ct6g2d8sjc2b
> Generally, probably a good idea to upgrade anyway



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (TIKA-3690) upgrade to poi 5.2.1

Reply via email to