[JCR-3871] POI Vulnerabilities - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.10
Fix Version/s: 2.10.1, 2.8.1
Component/s: None
Labels:
None

Description

Multiple security vulnerabilities in Apache POI require upgrade to at least 3.10.1 or later.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3574
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3529

Attachments

Activity

People

Assignee:: Marcel Reutegger

Reporter:: Peter Walsh

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 15/Apr/15 21:36

Updated:: 28/May/15 07:15

Resolved:: 20/Apr/15 14:14