You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@maven.apache.org by "Michael Osipov (Jira)" <ji...@apache.org> on 2022/07/25 16:41:00 UTC

[jira] [Closed] (MSHARED-992) maven-shared-components uses commons-io 2.5 which is vulnerable

     [ https://issues.apache.org/jira/browse/MSHARED-992?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Michael Osipov closed MSHARED-992.
----------------------------------
    Resolution: Duplicate

> maven-shared-components uses commons-io 2.5 which is vulnerable
> ---------------------------------------------------------------
>
>                 Key: MSHARED-992
>                 URL: https://issues.apache.org/jira/browse/MSHARED-992
>             Project: Maven Shared Components
>          Issue Type: Bug
>            Reporter: Dwayne E Culbertson
>            Priority: Major
>              Labels: Security
>
>  
> Note: This vulnerability has been assigned CVE-2021-29425.
> h4. ADVISORIES
> Project:[https://github.com/apache/commons-io/pull/52]
>  Project:https://issues.apache.org/jira/browse/IO-556
>  Project:https://issues.apache.org/jira/browse/IO-559
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)