You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tika.apache.org by "Tim Allison (Jira)" <ji...@apache.org> on 2022/03/11 19:23:00 UTC

[jira] [Comment Edited] (TIKA-3690) upgrade to poi 5.2.1

    [ https://issues.apache.org/jira/browse/TIKA-3690?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17505090#comment-17505090 ] 

Tim Allison edited comment on TIKA-3690 at 3/11/22, 7:22 PM:
-------------------------------------------------------------

Yikes!  Opened TIKA-3699.  Thank you [~ahubold] for pointing this out!


was (Author: tallison@mitre.org):
Yikes!  Opened TIKA-3699.

> upgrade to poi 5.2.1
> --------------------
>
>                 Key: TIKA-3690
>                 URL: https://issues.apache.org/jira/browse/TIKA-3690
>             Project: Tika
>          Issue Type: Improvement
>          Components: parser
>            Reporter: PJ Fanning
>            Priority: Major
>             Fix For: 2.3.1, 1.28.2
>
>
> There is a POI CVE that may or may not affect TIka - https://lists.apache.org/thread/hqc0ohg0z1j0p4ysm3y4ct6g2d8sjc2b
> Generally, probably a good idea to upgrade anyway



--
This message was sent by Atlassian Jira
(v8.20.1#820001)