You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tika.apache.org by "Ehud (Jira)" <ji...@apache.org> on 2022/08/17 08:23:00 UTC

[jira] [Created] (TIKA-3837) Tika uses an old version of tukaani:xz:jar:1.9 with critical security vulnerability

Ehud created TIKA-3837:
--------------------------

             Summary: Tika uses an old version of tukaani:xz:jar:1.9 with critical security vulnerability
                 Key: TIKA-3837
                 URL: https://issues.apache.org/jira/browse/TIKA-3837
             Project: Tika
          Issue Type: Bug
          Components: depedency
    Affects Versions: 2.4.1
            Reporter: Ehud


Tika uses an old version of tukaani:xz:jar:1.9 with critical security vulnerability+- org.apache.tika:tika-parser-pkg-module:jar:2.4.0:compile
  +- org.tukaani:xz:jar:1.9:compile

 
Reference Info:
[https://nvd.nist.gov/vuln/detail/CVE-2015-4035]



--
This message was sent by Atlassian Jira
(v8.20.10#820010)