Uploaded image for project: 'RESTEasy'
  1. RESTEasy
  2. RESTEASY-3274

Upgrade mime4j to a more recent version

XMLWordPrintable

    • Icon: Component Upgrade Component Upgrade
    • Resolution: Done
    • Icon: Major Major
    • 5.0.6.Final, 6.2.3.Final, 7.0.0.Alpha1
    • 5.0.5.Final
    • None
    • None

      Tag: https://github.com/apache/james-mime4j/releases/tag/apache-mime4j-project-0.8.9

      6.3 Diff: https://github.com/apache/james-mime4j/compare/apache-mime4j-project-0.8.8...apache-mime4j-project-0.8.9
      5.0 Diff: https://github.com/apache/james-mime4j/compare/apache-mime4j-project-0.8.3...apache-mime4j-project-0.8.9

       

      [INFO] |  \- org.jboss.resteasy:resteasy-multipart-provider:jar:5.0.5.Final:compile
[INFO] |     +- org.apache.james:apache-mime4j-dom:jar:0.8.3:compile
[INFO] |     |  \- org.apache.james:apache-mime4j-core:jar:0.8.3:compile
[INFO] |     \- org.apache.james:apache-mime4j-storage:jar:0.8.3:compile

      resteasy-multipart-provider:jar:5.0.5.Final depends upon a version of mime4j which appears to be vulnerable, see https://nvd.nist.gov/vuln/detail/CVE-2022-45787

              jperkins-rhn James Perkins
              fgrilli Federico Grilli (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: