[ https://issues.apache.org/jira/browse/TOBAGO-1839?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16311643#comment-16311643 ]
Hudson commented on TOBAGO-1839: -------------------------------- SUCCESS: Integrated in Jenkins build Tobago 3.0.x #38 (See [https://builds.apache.org/job/Tobago%203.0.x/38/]) TOBAGO-1839: Cross-site scripting (XSS) vulnerability in jsoup before (lofwyr: rev 01b94fd5228178b52ac48e7cbd960b872a5662fe) * (edit) pom.xml > Cross-site scripting (XSS) vulnerability in jsoup before 1.8.3 - CVE-2015-6748 > ------------------------------------------------------------------------------ > > Key: TOBAGO-1839 > URL: https://issues.apache.org/jira/browse/TOBAGO-1839 > Project: MyFaces Tobago > Issue Type: Task > Components: Core > Affects Versions: 2.1.0, 3.0.6 > Reporter: Udo Schnurpfeil > Assignee: Udo Schnurpfeil > Fix For: 2.1.1, 4.1.0, 3.0.7 > > > Tobago uses jsoup by default. But the dependency can be updated to a newer > version in the application which uses Tobago. > The next releases should reference an updated version of jsoup. > Current version is 1.11.2 -- This message was sent by Atlassian JIRA (v6.4.14#64029)