You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fop-dev@xmlgraphics.apache.org by "Bernd Rabe (Jira)" <ji...@apache.org> on 2020/07/30 14:18:00 UTC
[jira] [Commented] (FOP-2939) Upgrade ant to 1.9.15
[ https://issues.apache.org/jira/browse/FOP-2939?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17167955#comment-17167955 ]
Bernd Rabe commented on FOP-2939:
---------------------------------
[~ssteiner],
please have a look at [https://svn.apache.org/repos/asf/xmlgraphics/fop/trunk/fop-events/pom.xml]
here the ant version should also be increased.
> Upgrade ant to 1.9.15
> ---------------------
>
> Key: FOP-2939
> URL: https://issues.apache.org/jira/browse/FOP-2939
> Project: FOP
> Issue Type: Task
> Affects Versions: 2.5
> Reporter: Tilman Hausherr
> Assignee: Simon Steiner
> Priority: Minor
> Fix For: trunk
>
>
> fop has a dependency on ant 1.8.2, e.g. in
> https://svn.apache.org/repos/asf/xmlgraphics/fop/trunk/fop-core/pom.xml
> <dependency>
> <groupId>org.apache.ant</groupId>
> <artifactId>ant</artifactId>
> <version>1.8.2</version>
> </dependency>
> however that version is flagged with vulnerability CVE-2020-1945 by dependency-check-maven.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)