Uploaded image for project: 'Axis2'
  1. Axis2
  2. AXIS2-5711

commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.6.2
    • Fix Version/s: 1.6.4, 1.7.0
    • Component/s: Integration
    • Labels:
      None
    • Environment:
      all environments

      Description

      modules/parent/pom.xml requires 1.3 version of commons-fileupload

      <!-- commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248 -->
      <!-- commons.fileupload.version>1.2</commons.fileupload.version -->
      <commons.fileupload.version>1.3</commons.fileupload.version>

      modules/fastinfoset/pom.xml requires 1.3 commons-fileupload

      <dependency>
      <groupId>commons-fileupload</groupId>
      <artifactId>commons-fileupload</artifactId>
      <version>1.3</version> <!-- commons-fileupload versions 1.0 - 1.2.2 are subject to CVE-2013-0248 -->
      </dependency>

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              mgainty@hotmail.com Martin Gainty
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 5m
                5m
                Remaining:
                Remaining Estimate - 5m
                5m
                Logged:
                Time Spent - Not Specified
                Not Specified