You are viewing a plain text version of this content. The canonical link for it is here.

Posted to fop-dev@xmlgraphics.apache.org by "Brian Martin (JIRA)" <ji...@apache.org> on 2016/01/24 23:05:39 UTC

[jira] [Commented] (FOP-2547) Security: update the Xalan version shipped with FOP

    [ https://issues.apache.org/jira/browse/FOP-2547?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15114562#comment-15114562 ] 

Brian Martin commented on FOP-2547:
-----------------------------------

And fixed in 2.1 per changelog, thanks!

> Security: update the Xalan version shipped with FOP
> ---------------------------------------------------
>
>                 Key: FOP-2547
>                 URL: https://issues.apache.org/jira/browse/FOP-2547
>             Project: FOP
>          Issue Type: Bug
>    Affects Versions: 2.0
>            Reporter: Lars Teuber
>            Assignee: simon steiner
>            Priority: Critical
>              Labels: security
>
> There is a security issue in Xalan < 2.7.2, see:
> https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0107



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)