[ https://issues.apache.org/jira/browse/OPENJPA-2616?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mark Struberg resolved OPENJPA-2616. ------------------------------------ Resolution: Fixed resolved as far as I can tell from the pom. > Update Commons Collections to 3.2.2 > ----------------------------------- > > Key: OPENJPA-2616 > URL: https://issues.apache.org/jira/browse/OPENJPA-2616 > Project: OpenJPA > Issue Type: Bug > Components: jpa > Affects Versions: 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.1.0, 1.2.0, 1.2.1, > 1.2.2, 1.2.3, 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, 2.2.2, 2.3.0, 2.4.0 > Reporter: Jody Grassel > Assignee: Jody Grassel > Fix For: 2.4.1 > > > As documented by https://issues.apache.org/jira/browse/COLLECTIONS-580 Apache > Commons Collections bears a significant exploit. This has been corrected in > Apache Commons Collections 3.2.2 and OpenJPA should be updated from 3.2.1 to > use this new level of Collections immediately. -- This message was sent by Atlassian JIRA (v6.3.4#6332)