[jira] [Created] (CONNECTORS-1565) Upgrade commons-collections to 3.2.2 (CVE-2015-6420)

Markus Schuch (JIRA) Mon, 07 Jan 2019 08:04:29 -0800

Markus Schuch created CONNECTORS-1565:
-----------------------------------------


             Summary: Upgrade commons-collections to 3.2.2 (CVE-2015-6420)
                 Key: CONNECTORS-1565
                 URL: https://issues.apache.org/jira/browse/CONNECTORS-1565
             Project: ManifoldCF
          Issue Type: Bug
          Components: Framework core
    Affects Versions: ManifoldCF 2.12
            Reporter: Markus Schuch
            Assignee: Markus Schuch
             Fix For: ManifoldCF next


We should upgrade commons-collections to 3.2.2 due to a known security issue 
with 3.2.1

https://commons.apache.org/proper/commons-collections/security-reports.html

Further reading:
[http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-andyour-application-have-in-common-this-vulnerability/]
[https://www.cvedetails.com/cve/CVE-2015-6420/]



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Created] (CONNECTORS-1565) Upgrade commons-collections to 3.2.2 (CVE-2015-6420)

Reply via email to