[jira] [Commented] (TAP5-2794) Upgrade away from vulnerable commons-io and commons-fileupload dependencies

Hudson (Jira) Sat, 26 Oct 2024 09:21:08 -0700


    [ 
https://issues.apache.org/jira/browse/TAP5-2794?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17893117#comment-17893117
 ]


Hudson commented on TAP5-2794:
------------------------------

SUCCESS: Integrated in Jenkins build Tapestry » 
tapestry-javax-java-17-freestyle #55 (See 
[https://ci-builds.apache.org/job/Tapestry/job/tapestry-javax-java-17-freestyle/55/])
TAP5-2794: upgrade commons-io and commons-fileupload (thiago: rev 
5e2af49edef5ccfca9e578e38ce908ea0e36a8cb)
* (edit) tapestry-upload/build.gradle
* (edit) tapestry-http/build.gradle
* (edit) build.gradle


> Upgrade away from vulnerable commons-io and commons-fileupload dependencies
> ---------------------------------------------------------------------------
>
>                 Key: TAP5-2794
>                 URL: https://issues.apache.org/jira/browse/TAP5-2794
>             Project: Tapestry 5
>          Issue Type: Bug
>          Components: tapestry-http, tapestry-upload
>    Affects Versions: 5.7.0, 5.7.1, 5.7.2, 5.7.3, 5.8.0, 5.8.1, 5.8.2, 5.8.3, 
> 5.8.4, 5.8.5, 5.8.6, 5.8.7, 5.7.4
>            Reporter: Thiago Henrique De Paula Figueiredo
>            Assignee: Thiago Henrique De Paula Figueiredo
>            Priority: Critical
>             Fix For: 5.9.0
>
>
> The vulnerabilities can be seen at 
> https://mvnrepository.com/artifact/org.apache.tapestry/tapestry-upload/5.9.0-preview-2.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (TAP5-2794) Upgrade away from vulnerable commons-io and commons-fileupload dependencies

Reply via email to