[CONFIGURATION-830] Update commons-text from 1.9 to 1.10.0 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Trivial
Resolution: Fixed
Affects Version/s: 2.8.0
Fix Version/s: 2.9.0
Component/s: Build
Labels:
None

External issue URL:
https://ossindex.sonatype.org/component/pkg:maven/org.apache.commons/commons-text@1.9

Description

commons-configuration2 version 2.8.0 has a dependency on commons-text:1.9 that has a critical vulnerability: [CVE-2022-42889] CWE-94: Improper Control of Generation of Code ('Code Injection'). See org.apache.commons:commons-text:1.9 for details.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Mario Jauvin

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 28/Mar/23 20:29

Updated:: 29/Mar/23 04:34

Resolved:: 29/Mar/23 04:34