Mark Prins ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=5d68e9f964bfb10c11a29d83 ) *created* an issue
GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-10040?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) GEOS-10040 ( https://osgeo-org.atlassian.net/browse/GEOS-10040?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) Bump commons-io from 2.6 to 2.8.0 ( https://osgeo-org.atlassian.net/browse/GEOS-10040?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) Issue Type: Bug Affects Versions: 2.19.1 Assignee: Mark Prins ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=5d68e9f964bfb10c11a29d83 ) Created: 27/Apr/21 7:41 PM Priority: Medium Reporter: Mark Prins ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=5d68e9f964bfb10c11a29d83 ) CVE-2021-29425 was fixed in version 2.7, but 2.8.0 is the latest release ( https://osgeo-org.atlassian.net/browse/GEOS-10040#add-comment?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10040#add-comment?atlOrigin=eyJpIjoiMTQ5YjgwOTA2YjViNDUyNGIwOTA5YzNkZmE0Nzk4YTIiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&referrer=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=EmailNotificationLink&mt=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100157- sha1:76eb1b6 )
_______________________________________________ Geoserver-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-devel
