Release Notes / Version 11.2304
Table Of ContentsThird-Party Update: Apache Tika and Transitive Dependencies
Apache Tika has been updated to version 2.4.1 to avoid security vulnerabilities CVE-2022-30126, CVE-2022-25169, and CVE-2022-33879. As part of this change, the following transitive dependencies of Apache Tika have been updated to match versions used by Tika.
Updated dependencies:
Apache PDFBox 2.0.26
Apache Tika 2.4.1
ASM 9.3
JHighlight 1.1.0
If you use these libraries in project code, please check their respective release notes for changes and upgrade information. No changes were necessary in the CoreMedia Blueprint for these updates.
(CMS-21721)