You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@maven.apache.org by sl...@apache.org on 2019/05/12 21:40:55 UTC

[maven-doxia] branch master updated: [DOXIA-593] Upgrade Apache Pdfbox Fontbox to 2.0.12

This is an automated email from the ASF dual-hosted git repository.

slachiewicz pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/maven-doxia.git


The following commit(s) were added to refs/heads/master by this push:
     new 322ada0  [DOXIA-593] Upgrade Apache Pdfbox Fontbox to 2.0.12
322ada0 is described below

commit 322ada0addaa3fab99a04a388f9e552902848044
Author: Sylwester Lachiewicz <sl...@apache.org>
AuthorDate: Sun May 12 22:25:11 2019 +0200

    [DOXIA-593] Upgrade Apache Pdfbox Fontbox to 2.0.12
---
 pom.xml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/pom.xml b/pom.xml
index 73200bf..8e3fd29 100644
--- a/pom.xml
+++ b/pom.xml
@@ -202,6 +202,13 @@ under the License.
         <version>1.7.1</version>
       </dependency>
 
+      <dependency><!-- remove when upgrade fop to higher than 2.3
+       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8036 -->
+        <groupId>org.apache.pdfbox</groupId>
+        <artifactId>fontbox</artifactId>
+        <version>2.0.12</version>
+      </dependency>
+
       <dependency>
         <groupId>org.codehaus.plexus</groupId>
         <artifactId>plexus-utils</artifactId>