You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@james.apache.org by rc...@apache.org on 2021/06/16 08:33:19 UTC

[james-project] 01/01: Upgrade pdfbox to 2.0.24

This is an automated email from the ASF dual-hosted git repository.

rcordier pushed a commit to branch upgrade-pdfbox-cve
in repository https://gitbox.apache.org/repos/asf/james-project.git

commit 9be828ee62106b3a81921f8f635bbae1ffe4882b
Author: Rene Cordier <rc...@linagora.com>
AuthorDate: Wed Jun 16 15:32:53 2021 +0700

    Upgrade pdfbox to 2.0.24
    
    2 CVEs for versions anterior to 2.0.24 have been reported:
    - https://nvd.nist.gov/vuln/detail/CVE-2021-31812
    - https://nvd.nist.gov/vuln/detail/CVE-2021-31811
    
    This upgrade should solve them.
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 866858c..6987e1c 100644
--- a/pom.xml
+++ b/pom.xml
@@ -2533,7 +2533,7 @@
             <dependency>
                 <groupId>org.apache.pdfbox</groupId>
                 <artifactId>pdfbox</artifactId>
-                <version>2.0.22</version>
+                <version>2.0.24</version>
                 <exclusions>
                     <exclusion>
                         <groupId>commons-logging</groupId>

---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@james.apache.org
For additional commands, e-mail: notifications-help@james.apache.org