axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mark Symons (JIRA)" <j...@apache.org>
Subject [jira] [Created] (AXIS2-5853) Update commons fileupload to 1.3.3: Fixes CVE-2016-1000031
Date Fri, 16 Jun 2017 13:36:00 GMT
Mark Symons created AXIS2-5853:
----------------------------------

             Summary: Update commons fileupload to 1.3.3: Fixes CVE-2016-1000031
                 Key: AXIS2-5853
                 URL: https://issues.apache.org/jira/browse/AXIS2-5853
             Project: Axis2
          Issue Type: Bug
          Components: kernel
    Affects Versions: 1.7.5
            Reporter: Mark Symons


{{org.apache.axis2:axis2-kernel}} v1.7.5 has  a {{commons-fileupload:commons-fileupload}}
v1.3.1 compile dependency

Update {{commons-fileupload}} to v1.3.3, which addresses CVE-2016-1000031 (CVE CVSS 3.0: 9.8)

The threat was addressed in FILEUPLOAD-279





--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: java-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: java-dev-help@axis.apache.org


Mime
View raw message