[ https://issues.apache.org/jira/browse/SLING-12118?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robert Munteanu resolved SLING-12118. ------------------------------------- Resolution: Fixed > Update Batik XML utility library to version 1.17 > ------------------------------------------------ > > Key: SLING-12118 > URL: https://issues.apache.org/jira/browse/SLING-12118 > Project: Sling > Issue Type: Bug > Components: XSS Protection API > Reporter: Tatyana Vogel > Assignee: Tatyana Vogel > Priority: Critical > Fix For: XSS Protection API 2.3.10 > > > The sling XSS library uses a vulnerable Batik XML utility library version. > Upgrade to a vulnerability-free version of the embedded library is needed. > [CVE-2022-44729|https://www.cvedetails.com/cve/CVE-2022-44729/] -- This message was sent by Atlassian Jira (v8.20.10#820010)