You are viewing a plain text version of this content. The canonical link for it is here.
Posted to server-dev@james.apache.org by "Benoit Tellier (Jira)" <se...@james.apache.org> on 2020/06/18 04:34:00 UTC
[jira] [Closed] (JAMES-3124) Recomend upgrading to Tika 1.24
[ https://issues.apache.org/jira/browse/JAMES-3124?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Benoit Tellier closed JAMES-3124.
---------------------------------
Resolution: Fixed
Done
> Recomend upgrading to Tika 1.24
> -------------------------------
>
> Key: JAMES-3124
> URL: https://issues.apache.org/jira/browse/JAMES-3124
> Project: James Server
> Issue Type: New Feature
> Reporter: Benoit Tellier
> Priority: Major
>
> Prior 1.24, Tika is subject to 2 CVEs:
> - [CVE-2020-1951] Infinite Loop (DoS) vulnerability in Apache Tika's PSDParser
> - [CVE-2020-1950] Excessive memory usage (DoS) vulnerability in Apache Tika's PSDParser
> We need to test & recommend the upgrade
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org