[ https://issues.apache.org/jira/browse/TIKA-4064?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17742985#comment-17742985 ]
Tilman Hausherr commented on TIKA-4064: --------------------------------------- No. Re bouncycastle, if you're using tika as library you don't need a new version at all, you just update your own build. If you're running tika as a server, then I don't see how CVE-2023-33201 applies to you, as you are the server. > Update to 2.8.1 > --------------- > > Key: TIKA-4064 > URL: https://issues.apache.org/jira/browse/TIKA-4064 > Project: Tika > Issue Type: Task > Components: build > Affects Versions: 2.8.0 > Reporter: Tilman Hausherr > Priority: Minor > Fix For: 2.8.1 > > > The latest maven versions plugin finds much more outdated stuff than the > previous one, so I'll do a few updates. -- This message was sent by Atlassian Jira (v8.20.10#820010)