[jira] [Assigned] (SLING-11131) Update Apache HTTP Client Dependency for CVE-2020-13956

Andrei Dulvac (Jira) Tue, 08 Feb 2022 08:54:06 -0800


     [ 
https://issues.apache.org/jira/browse/SLING-11131?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andrei Dulvac reassigned SLING-11131:
-------------------------------------

    Assignee: Andrei Dulvac

> Update Apache HTTP Client Dependency for CVE-2020-13956
> -------------------------------------------------------
>
>                 Key: SLING-11131
>                 URL: https://issues.apache.org/jira/browse/SLING-11131
>             Project: Sling
>          Issue Type: Task
>          Components: Apache Sling Testing Clients
>    Affects Versions: Apache Sling Testing Clients 3.0.10
>            Reporter: Andrei Tuicu
>            Assignee: Andrei Dulvac
>            Priority: Major
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> org.apache.httpcomponents.httpclient 4.4.1 is vulnerable to 
> CVE-2020-13956(MEDIUM)[0].
> We need to update to the latest version of the Apache HTP Client 4.5.13. 
> [0] https://www.cvedetails.com/cve/CVE-2020-13956/



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Assigned] (SLING-11131) Update Apache HTTP Client Dependency for CVE-2020-13956

Reply via email to