Uploaded image for project: 'Tika'
  1. Tika
  2. TIKA-3492

Upgrade version for TPS: rome to 1.16.0 in tika-bundle

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 1.27
    • 2.1.0, 1.28
    • None

    Description

      tika-bundle-1.27 uses rome-1.15.0.

      There is following vulnerability reported in rome-1.15.0 as per Sonatype Data Research:
      sonatype-2021-0802 :

      rome-1.16.0 is non-vulnerable version. Please consider upgrading to it in the next release.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. TIKA-3506 please fix multipile CVE in commons-compress for tika-parsers 1.x too

          • Major - Major loss of function.
          • Open

          Task - A task that needs to be done. TIKA-3613 General upgrades for 1.27.1

          • Major - Major loss of function.
          • Open

          Task - A task that needs to be done. TIKA-3488 Security issue XXE in TIKA due to JDOM

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              shuraut Shubhangi Raut
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: