[ https://issues.apache.org/jira/browse/MSHARED-1450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
jycr updated MSHARED-1450: -------------------------- Component/s: maven-shared-utils (was: file-management) > Make release of 'maven-shared-utils' to fix CVE-2024-47554 > ---------------------------------------------------------- > > Key: MSHARED-1450 > URL: https://issues.apache.org/jira/browse/MSHARED-1450 > Project: Maven Shared Components > Issue Type: Bug > Components: maven-shared-utils > Affects Versions: file-management-3.1.0 > Reporter: jycr > Priority: Critical > > The latest current version of [file-management > 3.1.0|https://github.com/apache/maven-file-management/releases/tag/file-management-3.1.0] > (released on August 15, 2023) is vulnerable to > [CVE-2024-47554|https://ossindex.sonatype.org/vulnerability/CVE-2024-47554]. > Commit > [0176d64|https://github.com/apache/maven-file-management/commit/0176d645c3051f5617ab8889a0dd5db76d816e82] > was added to fix this issue in the {{main}} branch on April 16, 2024. > Can you create a new version of {{file-management}} that includes this commit > to fix this CVE? -- This message was sent by Atlassian Jira (v8.20.10#820010)