Description
Hi,
We have couple of vulnerabilities CVE-2024-25710, CVE-2024-26308 with 'Camel-zip-deflater'. These vulnerabilities are from org.apache.commons:commons-compress.1.21.jar, need to upgrade to 1.26.0.
Is there any plan to release a new patch version on 3.22 with the fix?
Attachments
Issue Links
- relates to
-
CAMEL-19229 camel-tarfile: Common compress 1.23 is causing test failures
- Resolved