[SLING-11131] Update Apache HTTP Client Dependency for CVE-2020-13956 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: Apache Sling Testing Clients 3.0.10
Fix Version/s: Apache Sling Testing Clients 3.0.12
Component/s: Apache Sling Testing Clients
Labels:
None

Description

org.apache.httpcomponents.httpclient 4.4.1 is vulnerable to CVE-2020-13956(MEDIUM)[0].

We need to update to the latest version of the Apache HTP Client 4.5.13.

[0] https://www.cvedetails.com/cve/CVE-2020-13956/

Attachments

Activity

People

Assignee:: Andrei Dulvac

Reporter:: Andrei Tuicu

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 08/Feb/22 16:45

Updated:: 09/Feb/22 13:20

Resolved:: 09/Feb/22 13:20

Time Tracking

Estimated:

Not Specified

Remaining:

0h

Logged:

1h 10m