You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fop-dev@xmlgraphics.apache.org by "Brian Martin (JIRA)" <ji...@apache.org> on 2016/01/24 23:05:39 UTC
[jira] [Commented] (FOP-2547) Security: update the Xalan version
shipped with FOP
[ https://issues.apache.org/jira/browse/FOP-2547?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15114562#comment-15114562 ]
Brian Martin commented on FOP-2547:
-----------------------------------
And fixed in 2.1 per changelog, thanks!
> Security: update the Xalan version shipped with FOP
> ---------------------------------------------------
>
> Key: FOP-2547
> URL: https://issues.apache.org/jira/browse/FOP-2547
> Project: FOP
> Issue Type: Bug
> Affects Versions: 2.0
> Reporter: Lars Teuber
> Assignee: simon steiner
> Priority: Critical
> Labels: security
>
> There is a security issue in Xalan < 2.7.2, see:
> https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0107
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)