[jira] [Commented] (TOMAHAWK-1686) Tomahawk should support commons-fileupload v1.3.3 due to CVE-2016-1000031

Thomas Andraschko (JIRA) Fri, 30 Nov 2018 07:49:14 -0800


    [ 
https://issues.apache.org/jira/browse/TOMAHAWK-1686?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16704939#comment-16704939
 ]


Thomas Andraschko commented on TOMAHAWK-1686:
---------------------------------------------

Just try it by yourself.
We don't have any active Tomahawk developers anymore -> see the comments of: 
https://issues.apache.org/jira/projects/TOMAHAWK/issues/TOMAHAWK-1685

> Tomahawk should support commons-fileupload v1.3.3 due to CVE-2016-1000031
> -------------------------------------------------------------------------
>
>                 Key: TOMAHAWK-1686
>                 URL: https://issues.apache.org/jira/browse/TOMAHAWK-1686
>             Project: MyFaces Tomahawk
>          Issue Type: Improvement
>    Affects Versions: 1.1.14
>            Reporter: Scott
>            Priority: Major
>
> Our customer reports a security scan flags commons-fileupload 1.2.1 as a 
> vulnerability and has requested we fix it.  Does Tomahawk 1.1.14 work with 
> commons-fileupload 1.3.3?  Or are there changes required?



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (TOMAHAWK-1686) Tomahawk should support commons-fileupload v1.3.3 due to CVE-2016-1000031

Reply via email to