[
https://issues.apache.org/jira/browse/NIFI-4806?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16621227#comment-16621227
]
Joseph Witt commented on NIFI-4806:
-----------------------------------
also see a lot of deprecation warnings about StringEscapeUtils deprecated in
commons-lang3 and now in commons-text. Fixing that. And updating all use of
commons-lang3
> Upgrade to Tika/Tika-Parsers 1.19 to resolve TIKA-2535 and CVEs reported
> against all releases prior to 1.19
> -----------------------------------------------------------------------------------------------------------
>
> Key: NIFI-4806
> URL: https://issues.apache.org/jira/browse/NIFI-4806
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Extensions
> Affects Versions: 1.5.0
> Reporter: Joseph Witt
> Assignee: Joseph Witt
> Priority: Blocker
> Fix For: 1.8.0
>
>
> The nifi-media-processors depend on Tika-Parsers 1.16 as of now. They need
> to be upgraded to at least Tika-Parsers 1.18 to resolve the licensing problem
> identified to the Tika team and which they resolved in
> https://issues.apache.org/jira/browse/TIKA-2535
>
> We aren't susceptible to the licensing problem at this time because when we
> did the last update for Tika-Parsers this was flagged and excluded though we
> could be exposing bugs for certain datayptes we'd do mime detection on
> (maybe). I have a comment about this in our pom.
>
> This Jira is to upgrade, ensure no invalid libs are used, and clean up the
> comments and move on.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
