CVE issues due to outdated tika-core version

cloudconvert / cloudconvert-java

Official CloudConvert Java SDK

37 stars 20 forks source link

Closed kirmandi closed 2 years ago

kirmandi commented 3 years ago

current dependency on tika-core 1.24 yields CVE-2020-9489 and CVE-2021-28657

solution: update tika-core to latest (1.27)

josiasmontag commented 2 years ago

Updated in SDK version 1.1.0.