[NUTCH-2979] Upgrade Commons Text to 1.10.0 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.19
Fix Version/s: 1.20
Component/s: build, plugin
Labels:
- help-wanted

Flags:

Important

Description

In order to address CVE-2022-42889 we should upgrade to commons-text 1.10.0:

Nutch core depends on 1.4 which is not affected by the CVE
the plugins lib-htmlunit and any23 depend on a vulnerable commons-text version (1.5 - 1.9)

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Sebastian Nagel

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 22/Dec/22 13:32

Updated:: 13/Mar/24 14:51

Resolved:: 28/Sep/23 12:35