[
https://issues.apache.org/jira/browse/TIKA-4302?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Alan Klein updated TIKA-4302:
-----------------------------
Description:
It appears that a number of dependencies were updated in #TIKA-4166
Would you be able to generate a new 2.9.x deployment that includes the changes
in TIKA-4166 ? I am specifically looking to address CVE-2024-29857 (High)
was:
Could you please upgrade the Bouncy Castle dependency to version 1.78.1 in the
version 2 line due to following CVEs?
CVE-2024-29857 (High)
CVE-2024-30171 (Medium)
CVE-2024-30172 (Medium)
> Please generate a new 2.9.x deployment
> --------------------------------------
>
> Key: TIKA-4302
> URL: https://issues.apache.org/jira/browse/TIKA-4302
> Project: Tika
> Issue Type: Task
> Affects Versions: 2.9.2
> Reporter: Alan Klein
> Priority: Major
>
> It appears that a number of dependencies were updated in #TIKA-4166
> Would you be able to generate a new 2.9.x deployment that includes the
> changes in TIKA-4166 ? I am specifically looking to address CVE-2024-29857
> (High)
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
