Google Git
Sign in
apache / ofbiz-framework / e1e7c2a4d3dd79e500103ed1d9ee29ea7237a498
commite1e7c2a4d3dd79e500103ed1d9ee29ea7237a498[log] [tgz]
authorJacques Le Roux <jacques.le.roux@les7arts.com>Sun Jun 13 09:16:16 2021 +0200
committerJacques Le Roux <jacques.le.roux@les7arts.com>Sun Jun 13 09:16:16 2021 +0200
treec7057b64c2a90bb0a46dc9e59a2add4aa13a636f
parentf0ee9218736fa98176d1712f62178b7359ccd6ab [diff]
Fixed: Update PDFBox to 2.0.24 because of CVE-2021-31811 & CVE-2021-31812 (OFBIZ-12256)

CVE-2021-31811: A carefully crafted PDF file can trigger an OutOfMemory-Exception
while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.

CVE-2021-31812: a carefully crafted PDF file can trigger an infinite loop while
loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
1 file changed
tree: c7057b64c2a90bb0a46dc9e59a2add4aa13a636f
  1. .github/
  2. applications/
  3. docs/
  4. framework/
  5. gradle/
  6. lib/
  7. runtime/
  8. themes/
  9. .gitattributes
  10. .gitignore
  11. .hgignore
  12. .xmlcatalog.xml
  13. APACHE2_HEADER
  14. build.gradle
  15. common.gradle
  16. gradlew
  17. gradlew.bat
  18. init-gradle-wrapper.bat
  19. INSTALL
  20. LICENSE
  21. NOTICE
  22. OPTIONAL_LIBRARIES
  23. README.adoc
  24. settings.gradle
  25. VERSION