axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andreas Veithen (JIRA)" <j...@apache.org>
Subject [jira] [Resolved] (AXIS2-5711) commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248
Date Sun, 02 Aug 2015 15:52:04 GMT

     [ https://issues.apache.org/jira/browse/AXIS2-5711?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Andreas Veithen resolved AXIS2-5711.
------------------------------------
       Resolution: Fixed
    Fix Version/s: 1.6.4
                   1.7.0

> commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248
> --------------------------------------------------------------------
>
>                 Key: AXIS2-5711
>                 URL: https://issues.apache.org/jira/browse/AXIS2-5711
>             Project: Axis2
>          Issue Type: Bug
>          Components: Integration
>    Affects Versions: 1.6.2
>         Environment: all environments
>            Reporter: Martin Gainty
>             Fix For: 1.7.0, 1.6.4
>
>   Original Estimate: 5m
>  Remaining Estimate: 5m
>
> modules/parent/pom.xml requires 1.3 version of commons-fileupload
>  <!-- commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248 -->
>         <!-- commons.fileupload.version>1.2</commons.fileupload.version -->
>         <commons.fileupload.version>1.3</commons.fileupload.version>
> modules/fastinfoset/pom.xml requires 1.3 commons-fileupload
> <dependency>
>             <groupId>commons-fileupload</groupId>
>             <artifactId>commons-fileupload</artifactId>
>             <version>1.3</version> <!-- commons-fileupload versions 1.0
- 1.2.2 are subject to CVE-2013-0248 -->
>         </dependency>



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org


Mime
View raw message