538555 – org.apache.commons.httpclient contains vulnerabilities and should be updated

Bug 538555 - org.apache.commons.httpclient contains vulnerabilities and should be updated

Summary: org.apache.commons.httpclient contains vulnerabilities and should be updated

Status:	NEW

Alias:	None

Product:	Orbit
Classification:	Tools
Component:	bundles (show other bugs)
Version:	unspecified
Hardware:	PC Windows 10

Importance:	P3 normal (vote)
Target Milestone:	---
Assignee:	Orbit Bundles
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2018-09-03 10:25 EDT by Reiner Hille
Modified:	2018-09-03 10:25 EDT (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Reiner Hille

2018-09-03 10:25:12 EDT

The bundle org.apache.commons.httpclient_3.1.0.v201012070820 contains at least the following vulnerabilities:
https://nvd.nist.gov/vuln/detail/CVE-2012-5783
https://nvd.nist.gov/vuln/detail/CVE-2015-5262
https://nvd.nist.gov/vuln/detail/CVE-2012-6153


It should be replaced with a version that resolves all those issues.