You are viewing a plain text version of this content. The canonical link for it is here.

Posted to fop-dev@xmlgraphics.apache.org by "Bernd Rabe (Jira)" <ji...@apache.org> on 2020/07/30 14:18:00 UTC

[jira] [Commented] (FOP-2939) Upgrade ant to 1.9.15

    [ https://issues.apache.org/jira/browse/FOP-2939?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17167955#comment-17167955 ] 

Bernd Rabe commented on FOP-2939:
---------------------------------

[~ssteiner],
please have a look at [https://svn.apache.org/repos/asf/xmlgraphics/fop/trunk/fop-events/pom.xml]

here the ant version should also be increased.

> Upgrade ant to 1.9.15
> ---------------------
>
>                 Key: FOP-2939
>                 URL: https://issues.apache.org/jira/browse/FOP-2939
>             Project: FOP
>          Issue Type: Task
>    Affects Versions: 2.5
>            Reporter: Tilman Hausherr
>            Assignee: Simon Steiner
>            Priority: Minor
>             Fix For: trunk
>
>
> fop has a dependency on ant 1.8.2, e.g. in
> https://svn.apache.org/repos/asf/xmlgraphics/fop/trunk/fop-core/pom.xml
>     <dependency>
>       <groupId>org.apache.ant</groupId>
>       <artifactId>ant</artifactId>
>       <version>1.8.2</version>
>     </dependency>
> however that version is flagged with vulnerability CVE-2020-1945 by dependency-check-maven.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)