Uploaded image for project: 'RESTEasy'
  1. RESTEasy
  2. RESTEASY-3274

Upgrade mime4j to a more recent version

XMLWordPrintable

    • Icon: Component Upgrade Component Upgrade
    • Resolution: Done
    • Icon: Major Major
    • 5.0.5.Final
    • None
    • None

      Tag: https://github.com/apache/james-mime4j/releases/tag/apache-mime4j-project-0.8.9

      6.3 Diff: https://github.com/apache/james-mime4j/compare/apache-mime4j-project-0.8.8...apache-mime4j-project-0.8.9
      5.0 Diff: https://github.com/apache/james-mime4j/compare/apache-mime4j-project-0.8.3...apache-mime4j-project-0.8.9

       

      [INFO] |  \- org.jboss.resteasy:resteasy-multipart-provider:jar:5.0.5.Final:compile
      [INFO] |     +- org.apache.james:apache-mime4j-dom:jar:0.8.3:compile
      [INFO] |     |  \- org.apache.james:apache-mime4j-core:jar:0.8.3:compile
      [INFO] |     \- org.apache.james:apache-mime4j-storage:jar:0.8.3:compile

      resteasy-multipart-provider:jar:5.0.5.Final depends upon a version of mime4j which appears to be vulnerable, see https://nvd.nist.gov/vuln/detail/CVE-2022-45787

            jperkins-rhn James Perkins
            fgrilli Federico Grilli
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: