Uploaded image for project: 'ModeShape'
  1. ModeShape
  2. MODE-2305

Update/Remove Apache POI library to avoid security vulnerabilty

    XMLWordPrintable

Details

    Description

      The version of Apache POI currently used by ModeShape (3.10-FINAL) contains a critical security vulnerability: http://www.apache.org/dist/poi/release/RELEASE-NOTES.txt (and https://bugzilla.redhat.com/show_bug.cgi?id=1138140).

      We should make sure we're using an updated version in which this issue has been fixed (see the release notes from above for details).

      Attachments

        Activity

          Public project attachment banner

            context keys: [headless, issue, helper, isAsynchronousRequest, project, action, user]
            current Project key: MODE

            People

              hchiorean Horia Chiorean (Inactive)
              hchiorean Horia Chiorean (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: