[SUREFIRE-1937] Upgrade Apache commons-io to Version 2.11.0 - ASF JIRA

Agile Board

Attach files

Attach Screenshot

Voters

Watch issue

Watchers

Create sub-task

Link

Clone

Update Comment Author

Replace String in Comment

Update Comment Visibility

Delete Comments

XML

Word

Printable

JSON

Details

Type: Dependency upgrade
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 3.0.0-M5
Fix Version/s: 3.0.0-M6
Component/s: Maven Failsafe Plugin, Maven Surefire Plugin, surefire-shared-utils
Labels:
None

Description

CommonsIO before and including 2.7 exposes a critical vulnerability https://nvd.nist.gov/vuln/detail/CVE-2021-29425 which is fixed in later versions.

Attachments

Issue Links

Add Link

is blocked by

SUREFIRE-1955 Switch project to Java 8

Closed

Delete this link

SUREFIRE-1972 Use current version of surefire-shared-utils

Closed

Delete this link

links to

GitHub Pull Request #444

Delete this link

Activity

Comment

This comment will be Viewable by All Users Viewable by All Users

Cancel

People

Assignee:: Tibor Digana

Reporter:: Johannes

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 18/Aug/21 13:34

Updated:: 19/Jan/22 15:06

Resolved:: 19/Jan/22 15:06

Agile

View on Board

Upgrade Apache commons-io to Version 2.11.0

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates

Agile

Slack

Issue deployment