You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@jmeter.apache.org by bu...@apache.org on 2016/01/21 13:18:38 UTC

[Bug 58902] New: Upgrade to Apache Commons Collections 3.2.2

https://bz.apache.org/bugzilla/show_bug.cgi?id=58902

            Bug ID: 58902
           Summary: Upgrade to Apache Commons Collections 3.2.2
           Product: JMeter
           Version: 2.13
          Hardware: PC
            Status: NEW
          Severity: trivial
          Priority: P2
         Component: Main
          Assignee: issues@jmeter.apache.org
          Reporter: shmulikk@gmail.com

Currently JMeter uses commons-collections-3.2.1.jar which suffer from a
security issue as described and fixed in COLLECTIONS-580.

Is it possible to upgrade to commons-collections-3.2.2.jar in the next JMeter
2.14 release?

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 58902] Upgrade to Apache Commons Collections 3.2.2

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=58902

Philippe Mouawad <p....@ubik-ingenierie.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |p.mouawad@ubik-ingenierie.c
                   |                            |om

--- Comment #2 from Philippe Mouawad <p....@ubik-ingenierie.com> ---
Author: pmouawad
Date: Fri Dec 18 12:13:25 2015
New Revision: 1720765

URL: http://svn.apache.org/viewvc?rev=1720765&view=rev
Log:
Update commons-collections to 3.2.2

Modified:
    jmeter/trunk/build.properties
    jmeter/trunk/eclipse.classpath
    jmeter/trunk/lib/   (props changed)
    jmeter/trunk/lib/aareadme.txt
    jmeter/trunk/licenses/bin/README.txt
    jmeter/trunk/res/maven/ApacheJMeter_parent.pom
    jmeter/trunk/xdocs/changes.xml

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 58902] Upgrade to Apache Commons Collections 3.2.2

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=58902

Sebb <se...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |FIXED
                 OS|                            |All

--- Comment #1 from Sebb <se...@apache.org> ---
Already done in SVN, will be in the next release.

However note that JMeter does not use the problematic classes, so is not
vulnerable.

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 58902] Upgrade to Apache Commons Collections 3.2.2

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=58902

Philippe Mouawad <p....@ubik-ingenierie.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Hardware|PC                          |All

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 58902] Upgrade to Apache Commons Collections 3.2.2

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=58902

--- Comment #3 from shmulikk@gmail.com ---
Thanks for the quick reply.

-- 
You are receiving this mail because:
You are the assignee for the bug.