[ https://issues.apache.org/jira/browse/OFBIZ-12844?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17755973#comment-17755973 ]
ASF subversion and git services commented on OFBIZ-12844: --------------------------------------------------------- Commit 1779d8ced1ea1ab0fe26e8e1db53b668b47c59dd in ofbiz-framework's branch refs/heads/release22.01 from Gil [ https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=1779d8ced1 ] Improved: Upgrade zip4j to 2.11.5 (OFBIZ-12844) This upgrade fix one CVE (CVE-2023-22899) and add some improvment and bugfixes : https://github.com/srikanth-lingala/zip4j/releases > Update zip4j to 2.11.5 > ---------------------- > > Key: OFBIZ-12844 > URL: https://issues.apache.org/jira/browse/OFBIZ-12844 > Project: OFBiz > Issue Type: Improvement > Components: framework > Affects Versions: 22.01.01 > Reporter: Gil Portenseigne > Assignee: Gil Portenseigne > Priority: Major > > See [https://github.com/srikanth-lingala/zip4j/releases] > Current 2.11.2 need update to fix CVE -- This message was sent by Atlassian Jira (v8.20.10#820010)