close

Filter

Release Notes / Version 10.2107
Table Of Contents
Serverimport

The log message "Master of content '{}' not in import set. Skipping versioned master link handling. Might break versioned master link consistency." has been promoted from INFO to WARN.

(CMS-15588)

Third-Party Update: Apache Tika and Transitive Dependencies

Apache Tika has been updated to version 1.22. As part of this change, the following transitive dependencies of Apache Tika have been updated to match versions used by Tika. This includes security updates for some libraries, for example in PDFBox (CVE-2019-0228) and Tika itself (CVE-2019-10088, CVE-2019-10093, CVE-2019-10094).

Updated dependencies:

  • com.github.openjson:openjson : 1.0.11

  • com.google.guava:guava : 28.0-jre

  • com.rometools:rome : 1.12.1

  • com.rometools:rome-utils : 1.12.1

  • commons-codec:commons-codec : 1.12

  • org.apache.commons:commons-lang3 : 3.9

  • org.apache.httpcomponents:httpclient : 4.5.9

  • org.apache.httpcomponents:httpcore : 4.4.11

  • org.apache.httpcomponents:httpmime : 4.5.9

  • org.apache.james:apache-mime4j-core : 0.8.3

  • org.apache.james:apache-mime4j-dom : 0.8.3

  • org.apache.pdfbox:fontbox : 2.0.16

  • org.apache.pdfbox:pdfbox : 2.0.16

  • org.apache.pdfbox:pdfbox-tools : 2.0.16

  • org.apache.tika:tika-core : 1.22

  • org.apache.tika:tika-parsers : 1.22

  • org.bouncycastle:bcmail-jdk15on : 1.62

  • org.bouncycastle:bcpkix-jdk15on : 1.62

  • org.bouncycastle:bcprov-jdk15on : 1.62

  • org.ow2.asm:asm : 7.2-beta

If you use the libraries in project code, please check their respective release notes for changes and upgrade information. No changes were necessary in the CoreMedia Blueprint for these updates.

(CMS-15395)

Was this article useful?

Search Results

Table Of Contents