(james-project) 01/01: [UPGRADE] commons-fileupload 1.5 -> 1.6.0

Mon, 16 Jun 2025 12:37:38 -0700 

This is an automated email from the ASF dual-hosted git repository.

btellier pushed a commit to branch CVE-2025-48976
in repository https://gitbox.apache.org/repos/asf/james-project.git

commit 07faa8d2f2eaef2415414ed2f64d5138ba119183
Author: Benoit TELLIER <btell...@linagora.com>
AuthorDate: Mon Jun 16 21:35:34 2025 +0200

    [UPGRADE] commons-fileupload 1.5 -> 1.6.0
    
    Fixes CVE-2025-48976 FileUpload DoS via part headers
---
 server/protocols/jmap-rfc-8621/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/protocols/jmap-rfc-8621/pom.xml 
b/server/protocols/jmap-rfc-8621/pom.xml
index a1dfb2bd4f..a9383bc8db 100644
--- a/server/protocols/jmap-rfc-8621/pom.xml
+++ b/server/protocols/jmap-rfc-8621/pom.xml
@@ -150,7 +150,7 @@
         <dependency>
             <groupId>commons-fileupload</groupId>
             <artifactId>commons-fileupload</artifactId>
-            <version>1.5</version>
+            <version>1.6.0</version>
         </dependency>
         <dependency>
             <groupId>eu.timepit</groupId>


---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscr...@james.apache.org
For additional commands, e-mail: notifications-h...@james.apache.org

Reply via email to