[jira] [Commented] (TIKA-3837) Tika uses an old version of tukaani:xz:jar:1.9 with critical security vulnerability

Ehud (Jira) Thu, 25 Aug 2022 06:50:39 -0700


    [ 
https://issues.apache.org/jira/browse/TIKA-3837?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17584861#comment-17584861
 ]


Ehud commented on TIKA-3837:
----------------------------

Thank you for your help Tilman,
Indeed, after dipper research, found it as not relevant.
I am closing the ticket

> Tika uses an old version of tukaani:xz:jar:1.9 with critical security 
> vulnerability
> -----------------------------------------------------------------------------------
>
>                 Key: TIKA-3837
>                 URL: https://issues.apache.org/jira/browse/TIKA-3837
>             Project: Tika
>          Issue Type: Bug
>          Components: depedency
>    Affects Versions: 2.4.1
>            Reporter: Ehud
>            Priority: Major
>              Labels: security
>
> Tika uses an old version of tukaani:xz:jar:1.9 with critical security 
> vulnerability+- org.apache.tika:tika-parser-pkg-module:jar:2.4.0:compile
>   +- org.tukaani:xz:jar:1.9:compile
>  
> Reference Info:
> [https://nvd.nist.gov/vuln/detail/CVE-2015-4035]



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (TIKA-3837) Tika uses an old version of tukaani:xz:jar:1.9 with critical security vulnerability

Reply via email to