[jira] [Resolved] (DIRAPI-390) Upgrade commons-text as it flags the project with CVE-2022-42889

Jira Wed, 05 Apr 2023 21:57:05 -0700


     [ 
https://issues.apache.org/jira/browse/DIRAPI-390?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Emmanuel Lécharny resolved DIRAPI-390.
--------------------------------------
    Resolution: Fixed

Fixed with commit 261f68b5d51dca0b28bb1af2846a81a8c9b40903

> Upgrade commons-text as it flags the project with CVE-2022-42889
> ----------------------------------------------------------------
>
>                 Key: DIRAPI-390
>                 URL: https://issues.apache.org/jira/browse/DIRAPI-390
>             Project: Directory Client API
>          Issue Type: Task
>    Affects Versions: 2.1.2
>            Reporter: Emmanuel Lécharny
>            Priority: Major
>             Fix For: 2.1.3
>
>
> We use commons-text, which is subject to CVE-2022-42889.
> Even if we don't use the part that triggers this CVE, tools are now flagging 
> the LDAP API as vulnerable because we depends on this library.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@directory.apache.org
For additional commands, e-mail: dev-h...@directory.apache.org

[jira] [Resolved] (DIRAPI-390) Upgrade commons-text as it flags the project with CVE-2022-42889

Reply via email to