Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Issues

Select view

Select search mode

 
1 of 1

Apache Commons IO Security Update: CVE-2021-29425

Fixed

Description

Apache Commons IO has a CVE recommending updating to 2.7 or higher. I've marked this as a minor priority since we do not use the affected API directly (FileNameUtils.normalize) but without auditing everything dependencies do, it's best to upgrade just in case.

Acceptance / Success Criteria

None

Lucidchart Diagrams

Details

Assignee

Reporter

Labels

Sprint

Fix versions

Affects versions

Priority

PagerDuty

Created May 5, 2021 at 7:15 PM
Updated May 18, 2021 at 7:47 PM
Resolved May 5, 2021 at 8:43 PM
Configure

Activity

Show:

Benjamin Reed May 5, 2021 at 8:43 PM

fixed in foundation-2018