Hari Prakash created MNG-8321:
---------------------------------
Summary: Apache Maven Compiler Plugin 3.13.0 and lower version has
Vulnerabilities from dependencies: CVE-2021-26291
Key: MNG-8321
URL: https://issues.apache.org/jira/browse/MNG-8321
Project: Maven
Issue Type: Bug
Components: POM
Reporter: Hari Prakash
Apache Maven Compiler Plugin 3.13.0 and lower version has Vulnerabilities from
dependencies: CVE-2021-26291
[Maven Repository: org.apache.maven.plugins » maven-compiler-plugin » 3.13.0
(mvnrepository.com)|https://mvnrepository.com/artifact/org.apache.maven.plugins/maven-compiler-plugin/3.13.0]
Below are some of the maven libraries this plugin refers to and these has
Vulnerabilities.
|gav://org.codehaus.plexus:plexus-utils:2.0.5|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
|gav://org.apache.maven:maven-core:2.0.9|
|gav://org.codehaus.plexus:plexus-utils:1.1|
|gav://org.codehaus.plexus:plexus-archiver:2.1|
|gav://org.codehaus.plexus:plexus-utils:3.0|
|gav://org.codehaus.plexus:plexus-utils:3.0.5|
|gav://org.codehaus.plexus:plexus-utils:2.0.5|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
|gav://org.codehaus.plexus:plexus-utils:3.0.8|
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
