[OFBIZ-12205] Upgrade Apache PDFBox to 2.0.23 because of CVE-2021-27807 and CVE-2021-27906 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: Trunk
Fix Version/s: 17.12.07, 18.12.01
Component/s: Gradle
Labels:
None

Sprint:
Bug Crush Event - 21/2/2015

Description

Currently we don't declare any dependency on PDFBox. I guess because it's used as a 3rd party by another lib. Fortunately it's easily done.

Attachments

Activity

People

Assignee:: Jacques Le Roux

Reporter:: Jacques Le Roux

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21/Mar/21 15:26

Updated:: 05/Apr/21 16:13

Resolved:: 21/Mar/21 15:41