You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@maven.apache.org by sl...@apache.org on 2019/05/12 21:40:55 UTC
[maven-doxia] branch master updated: [DOXIA-593] Upgrade Apache
Pdfbox Fontbox to 2.0.12
This is an automated email from the ASF dual-hosted git repository.
slachiewicz pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/maven-doxia.git
The following commit(s) were added to refs/heads/master by this push:
new 322ada0 [DOXIA-593] Upgrade Apache Pdfbox Fontbox to 2.0.12
322ada0 is described below
commit 322ada0addaa3fab99a04a388f9e552902848044
Author: Sylwester Lachiewicz <sl...@apache.org>
AuthorDate: Sun May 12 22:25:11 2019 +0200
[DOXIA-593] Upgrade Apache Pdfbox Fontbox to 2.0.12
---
pom.xml | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/pom.xml b/pom.xml
index 73200bf..8e3fd29 100644
--- a/pom.xml
+++ b/pom.xml
@@ -202,6 +202,13 @@ under the License.
<version>1.7.1</version>
</dependency>
+ <dependency><!-- remove when upgrade fop to higher than 2.3
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8036 -->
+ <groupId>org.apache.pdfbox</groupId>
+ <artifactId>fontbox</artifactId>
+ <version>2.0.12</version>
+ </dependency>
+
<dependency>
<groupId>org.codehaus.plexus</groupId>
<artifactId>plexus-utils</artifactId>